spdx

OpenSCA-cli is a supply-chain security tool for security researchers and developers.

CLI tool and library for generating a Software Bill of Materials from container images and filesystems