Introduction

OWASP CycloneDX is a lightweight Software Bill of Materials (SBOM) standard designed for use in application security contexts and supply chain component analysis.

Strategic direction and maintenance of the specification is managed by the CycloneDX Core working group, with origins in the OWASP community.

CycloneDX Supporters

Apiiro
Contrast Security
IonChannel
Lockheed Martin
NowSecure
OWASP
Rezilion
Sonatype
Vdoo
Xperi