SBOM – Software Bill of Materials
SOOS scans a software project’s deep dependency tree of libraries and packages to generate the software bill of materials (SBOM) in seconds. SOOS can scan a third-party software bill of materials (SBOM) for vulnerabilities and license usage.
SCAN YOUR CODE
AND TRY FOR FREE!*
Unlimited Projects. Unlimited Users. Unlimited Scans.
No credit card is required.
Meet government and buyer requirements to generate a software bill of materials
Generating a software bill of materials can be difficult and time-consuming. SOOS makes it easy to find all the packages or libraries your programmers have utilized as well as the packages or libraries those open source modules have included to generate a thorough SBOM. SOOS generates an SBOM with optional inclusions of the Package Manager, License Name, Package Homepage, Package Description, Package Download URL, and even complete open source License Text. The SOOS SBOM supports the component relationship.
SBOM formats to fit your every need
SOOS generates the SBOM using Software Package Data Exchange format (SPDX) CycloneDX and supports VEX. SBOMS can be exported as a TXT, HTML, or JSON file type. Users that need the software bill of materials as a PDF can print the HTML version from their browser. SOOS stores the history of changes so you can view the changes over time to the SBOM.
SOOS seamlessly integrates with your code repository, CI/CD pipeline and workflow management tools.
License management setup is fast and easy so that you can start real-time scanning for open-source license information in minutes. License issues can be automatically put into the workflow system for your development team to address.
We support major programming languages.
Open source license libraries supported
Open source languages/package managers supported: Python/PiPI, Node/NPM, RUBY/RUBYGems, Java/Maven, and .NET/NuGet.