Description:
Creates CycloneDX Software Bill of Materials (SBOM) from Python projects
|
|
Type: Formula
|
Latest Version: 7.2.1@1
|
Tracked Since: Dec 17, 2025
|
|
Links:
Homepage |
formulae.brew.sh
|
|
Category: Security
|
|
Tags:
sbom
security
compliance
devops
cryptography
|
|
Install:
brew install cyclonedx-python
|
About:
CycloneDX for Python generates a standards-compliant Software Bill of Materials (SBOM) in JSON or XML format from your project's installed packages. It analyzes your environment to list all components, their versions, and transitive dependencies, providing essential visibility into your software supply chain. This tool is crucial for security compliance and vulnerability management.
|
Key Features:
- Supports multiple input sources (pip, requirements.txt, PEP 621 pyproject.toml)
- Outputs to JSON, XML, or protocol buffers
- Vulnerability data enrichment via integration with services like NVD
- Lightweight and easy to integrate into CI/CD pipelines
|
Use Cases:
- Generating SBOMs for regulatory compliance (e.g., Executive Order 14028)
- Auditing project dependencies for known security vulnerabilities
- Integrating software composition analysis into automated builds
|
Alternatives:
-
pip-audit
– pip-audit focuses specifically on vulnerability scanning, whereas CycloneDX-python focuses on generating the SBOM artifact itself.
-
tern
– Tern is primarily for container images, while CycloneDX-python operates at the Python environment level.
|
|
License: Apache-2.0
|
|
Dependencies: python@3.14, rpds-py
|
|
Bottles available for: arm64_tahoe, arm64_sequoia, arm64_sonoma, sonoma, arm64_linux, x86_64_linux
|
| Detected |
Version |
Rev |
Change |
Commit |
| Oct 24, 2025 7:43pm |
|
0 |
VERSION_BUMP |
18e947cf |
| Oct 14, 2025 9:59am |
|
0 |
VERSION_BUMP |
b2ffba37 |
| Oct 14, 2025 1:24am |
|
0 |
VERSION_BUMP |
888ec052 |
| Nov 9, 2024 4:01pm |
|
0 |
VERSION_BUMP |
eadb4d14 |
| Nov 9, 2024 3:29pm |
|
0 |
VERSION_BUMP |
cbba7022 |
| Oct 23, 2024 12:31pm |
|
0 |
VERSION_BUMP |
9489f272 |
| Oct 10, 2024 5:35pm |
|
0 |
VERSION_BUMP |
4fa67076 |
| Oct 10, 2024 12:16pm |
|
0 |
VERSION_BUMP |
53bef1b2 |
| Sep 30, 2024 6:30pm |
|
0 |
VERSION_BUMP |
b3015ef9 |
| Sep 20, 2024 9:30am |
|
0 |
VERSION_BUMP |
ae878b0f |
| Sep 18, 2024 4:47pm |
|
0 |
VERSION_BUMP |
14186727 |
| Sep 18, 2024 3:30pm |
|
0 |
VERSION_BUMP |
5c7221bf |
| Sep 11, 2024 6:24pm |
|
0 |
VERSION_BUMP |
9a936302 |
| Apr 21, 2024 1:58pm |
|
0 |
VERSION_BUMP |
2046711f |
| Apr 20, 2024 3:25pm |
|
0 |
VERSION_BUMP |
d31ff16a |
| Apr 15, 2024 11:14pm |
|
0 |
VERSION_BUMP |
a7694b07 |
| Apr 11, 2024 12:29pm |
|
0 |
VERSION_BUMP |
57c39beb |
| Nov 3, 2023 7:32am |
|
0 |
VERSION_BUMP |
a3ec183d |
| Oct 19, 2023 10:04am |
|
0 |
VERSION_BUMP |
63be96d7 |
| Oct 1, 2023 5:12am |
|
0 |
VERSION_BUMP |
2376e65b |
| Sep 10, 2023 4:47pm |
|
0 |
VERSION_BUMP |
098deac3 |
|