cyclonedx-python
« Back to VersTracker
Description:
Creates CycloneDX Software Bill of Materials (SBOM) from Python projects
Type: Formula  |  Latest Version: 7.2.1@1  |  Tracked Since: Dec 17, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: sbom security compliance devops cryptography
Install: brew install cyclonedx-python
About:
CycloneDX for Python generates a standards-compliant Software Bill of Materials (SBOM) in JSON or XML format from your project's installed packages. It analyzes your environment to list all components, their versions, and transitive dependencies, providing essential visibility into your software supply chain. This tool is crucial for security compliance and vulnerability management.
Key Features:
  • Supports multiple input sources (pip, requirements.txt, PEP 621 pyproject.toml)
  • Outputs to JSON, XML, or protocol buffers
  • Vulnerability data enrichment via integration with services like NVD
  • Lightweight and easy to integrate into CI/CD pipelines
Use Cases:
  • Generating SBOMs for regulatory compliance (e.g., Executive Order 14028)
  • Auditing project dependencies for known security vulnerabilities
  • Integrating software composition analysis into automated builds
Alternatives:
  • pip-audit – pip-audit focuses specifically on vulnerability scanning, whereas CycloneDX-python focuses on generating the SBOM artifact itself.
  • tern – Tern is primarily for container images, while CycloneDX-python operates at the Python environment level.
License: Apache-2.0
Dependencies: python@3.14, rpds-py
Bottles available for: arm64_tahoe, arm64_sequoia, arm64_sonoma, sonoma, arm64_linux, x86_64_linux
Version History
Detected Version Rev Change Commit
Oct 24, 2025 7:43pm 0 VERSION_BUMP 18e947cf
Oct 14, 2025 9:59am 0 VERSION_BUMP b2ffba37
Oct 14, 2025 1:24am 0 VERSION_BUMP 888ec052
Nov 9, 2024 4:01pm 0 VERSION_BUMP eadb4d14
Nov 9, 2024 3:29pm 0 VERSION_BUMP cbba7022
Oct 23, 2024 12:31pm 0 VERSION_BUMP 9489f272
Oct 10, 2024 5:35pm 0 VERSION_BUMP 4fa67076
Oct 10, 2024 12:16pm 0 VERSION_BUMP 53bef1b2
Sep 30, 2024 6:30pm 0 VERSION_BUMP b3015ef9
Sep 20, 2024 9:30am 0 VERSION_BUMP ae878b0f
Sep 18, 2024 4:47pm 0 VERSION_BUMP 14186727
Sep 18, 2024 3:30pm 0 VERSION_BUMP 5c7221bf
« Back to VersTracker  |  Browse Packages  |  About