Skip to content

sbomify ยท v26.1.0

A Software Bill of Materials (SBOM) and document management platform application.

This is a wellmaintained/packages distribution of the hosted app.sbomify.com service.
๐Ÿš€ Deploy
docker-compose.yml
๐Ÿ“‹ Audit Pack
all compliance artifacts in one ZIP
7 container images
CycloneDX SBOMs
Grype CVE scans
VEX triage
License notices
Source disclosure
SLSA Build Level 3
Sigstore signing
Regulation Evidence Map
Which release artifacts satisfy specific regulatory requirements.
RegulationControlDependenciesVulnerabilitiesLicensesProvenance
Vendor
Security
Assessment		Software compositionโœ“
Vulnerability managementโœ“
Third-party riskโœ“
Build integrityโœ“
ISO 27001A.8.8 Vulnerability managementโœ“
A.8.28 Secure codingโœ“โœ“
A.8.30 Outsourced developmentโœ“โœ“
CRAArt.13 SBOM requirementโœ“
Art.13(6) Vulnerability handlingโœ“
Art.13 Secure developmentโœ“