This repo accumulate underlying data and analysis results for assessing the current landscape of open-source and proprietary tools related to Software Bill of Materials (SBOM). We investigate emerging use cases in software supply chain security and identify gaps in SBOM technologies. Our current analysis encompasses 84 tools, providing a snapshot of the current market and highlighting areas for improvement.
Preliminary Study Report Can be Found here: https://arxiv.org/abs/2402.11151
Cite us! :)
@misc{https://doi.org/10.48550/arxiv.2402.11151,
doi = {10.48550/ARXIV.2402.11151},
url = {https://arxiv.org/abs/2402.11151},
author = {Mirakhorli, Mehdi and Garcia, Derek and Dillon, Schuyler and Laporte, Kevin and Morrison, Matthew and Lu, Henry and Koscinski, Viktoria and Enoch, Christopher},
keywords = {Software Engineering (cs.SE), FOS: Computer and information sciences, FOS: Computer and information sciences},
title = {A Landscape Study of Open Source and Proprietary Tools for Software Bill of Materials (SBOM)},
publisher = {arXiv},
year = {2024},
copyright = {Creative Commons Attribution 4.0 International}
}