CycloneDX is a modern standard for the software supply chain. Discover the many capabilities that await.
Explore a wide array of use cases along with corresponding examples in both XML and JSON formats.
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. The specification supports:
Strategic direction of the specification is managed by the CycloneDX Core Working Group, is backed by the OWASP Foundation, and is supported by the global information security community.