We adapt to your workflow. sbomx simply works with your existing code and processes. We injest information from various programming languages and frameworks.
We support the industry standard file formats like Excel, CSV, PDF, SPDX, CycloneDX, and SWID. All the information is ready for further post-processing.
sbomx seamlessly integrates with existing tools and solutions. Download your information in one of the well-known formats or directly use our API.
A resilient software supply chain plays a critical role in software development. We follow the recommendations of the Open Source Security Foundation (OpenSSF) to recognize Common Vulnerabilities and Exposures (CVEs) and Common Weakness Enumerations (CWEs).
1,803,534 packages analyzed. Self-healing algorithms ensure latest information.
21,394,371 versions in our database. Stay up-to-date with new releases.
127,177,889 dependencies crawled. A chain is only as strong as its weakest link.
584,077 maintainers indexed. Use allowlists and denylists for filtering maintainers.
77,271 scores calculated and counting. The criticality score defines the influence and importance of a project.
6,585 vulnerabilities inspected. Keep an eye on malicious packages.
458 licenses studied. Build software according to Law and Compliance.
414,743 keywords inspected. Find relationship between packages.