OWASP CycloneDX is a system‑transparency standard providing full‑stack Bills of Materials (BOMs) and advanced supply‑chain insights throughout the entire product lifecycle.
This Python package provides data models, validators and more, to help you create/render/read CycloneDX documents.
This package is not designed for standalone use. It is a software library.
As of version 3.0.0 of this library, the internal data model was adjusted to allow CycloneDX VEX documents to be produced as per
official examples linking VEX to a separate CycloneDX document.
If you're looking for a CycloneDX tool to run to generate (SBOM) software bill-of-materials documents, why not checkout CycloneDX Python or Jake.
.. toctree:: :maxdepth: 2 :caption: Contents: responsibilities_capabilities install architecture examples contributing support changelog upgrading