Skip to content
@SBOMit

SBOMit

The SBOMit specification is a SBOM format independent method for attesting components with additional verification information.
README.md

SBOMit Logo

The SBOMit specification is a SBOM format independent method for attesting components with additional verification information. These attestation are generated at the time the supply chain was generated.

This verification information, which uses in-toto attestations and layouts, is able to be validated by a party to get a high degree of assurances about the software.

Pinned

  1. specification specification Public

    54 7

Repositories

Showing 7 of 7 repositories
  • SBOMit-strace-prototype Public
    SBOMit/SBOMit-strace-prototype’s past year of commit activity
    Go 1 0 2 0 Updated Apr 5, 2024
  • protobomit Public

    Protobomit is a command line tool designed to manage Software Bill of Materials (SBOM) by adding in-toto attestations as an external references.

    SBOMit/protobomit’s past year of commit activity
    Go 10 Apache-2.0 3 5 0 Updated Jan 25, 2024
  • specification Public
    SBOMit/specification’s past year of commit activity
    54 7 5 1 Updated Jan 24, 2024
  • website Public
    SBOMit/website’s past year of commit activity
    HTML 0 4 2 1 Updated Jan 12, 2024
  • .github Public
    SBOMit/.github’s past year of commit activity
    0 0 1 0 Updated Oct 6, 2023
  • .allstar Public
    SBOMit/.allstar’s past year of commit activity
    0 0 2 0 Updated Oct 6, 2023
  • tac Public Forked from ossf/tac

    Technical Advisory Council

    SBOMit/tac’s past year of commit activity
    0 49 0 1 Updated Oct 5, 2023

Top languages

Loading…

Most used topics

Loading…