This components aims at generating reports in various for software bill of materials based on CycloneDX standard. More info on this standard can be found here.
Service offers an API to which other services or users can send sBOM documents (CycloneDX) and get back generated PDF/spread sheet files.
As this is a Spring Boot app, compiling and running is simple:
mvn clean package
java -jar target/application-sbom-generator.jar Note: Build file contains a code signing step. Make sure to change config to your own signing key. For more details see plugin page
You can reach API via:
http://localhost:8080/swagger-ui/index.html
Service so far supports running as Docker container and to be deployed to Kubernetes cluster. For Docker instructions see: https://hub.docker.com/r/starwitorg/sbom-generator
To install service to Kubernetes use Helm chart provided here: https://hub.docker.com/r/starwitorg/sbom-generator-chart
The “KI-Cockpit” (AI Cockpit) project was funded by the Federal Ministry of Labor and Social Affairs.
Software in this repository is licensed under the AGPL-3.0 license. See license agreement for more details.