CycloneDX/specification

OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX

61
/ 100
Established

Standardized across XML, JSON, and Protocol Buffer formats with IANA-registered media types for seamless interoperability. The specification is formally recognized as ECMA-424 under royalty-free patent policy, with JSON Schema as the reference implementation. Integrates with a vendor-neutral ecosystem of SBOM generators, vulnerability scanners, and supply chain tools tracked in the CycloneDX Tool Center.

487 stars.

No Package No Dependents
Maintenance 13 / 25
Adoption 10 / 25
Maturity 16 / 25
Community 22 / 25

How are scores calculated?

Stars

487

Forks

83

Language

XSLT

License

Apache-2.0

Category

ai-red-teaming

Last pushed

Mar 12, 2026

Commits (30d)

0

GitHub
Ai Red Teaming · 2 tools

Get this data via API

curl "https://pt-edge.onrender.com/api/v1/quality/ai-coding/CycloneDX/specification"

Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.

Related tools

MANDO-Project/ge-sc-transformer

MANDO-HGT is a framework for detecting smart contract vulnerabilities. Given either in source...

32

Explore AI Coding Tools

All categories Trending AI Coding directory Insights