tern
« Back to VersTracker
Description:
Software Bill of Materials (SBOM) tool
Type: Formula  |  Tracked Since: Dec 28, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: sbom containers security devops compliance
Install: brew install tern
About:
Tern is an open-source tool for creating a Software Bill of Materials (SBOM) for container images and Dockerfiles. It inspects the layers of a container to identify installed packages and dependencies, providing visibility into the software composition. This helps developers and security teams track components and manage compliance for cloud-native applications.
Key Features:
  • Generates SBOMs for container images
  • Supports SPDX and CycloneDX formats
  • Analyzes Dockerfiles and image layers
  • Integrates with CI/CD pipelines
Use Cases:
  • Generating SBOMs for software supply chain compliance
  • Auditing container images for known vulnerabilities
  • Documenting software dependencies for release artifacts
Alternatives:
  • Syft – Syft is a faster, widely adopted alternative for generating SBOMs from container images and filesystems.
  • CycloneDX CLI – A tool focused on validating and manipulating existing CycloneDX SBOMs rather than generating them from containers.
Version History
Detected Version Rev Change Commit
Sep 12, 2025 4:19am 0 VERSION_BUMP 63fdee88
Sep 12, 2024 11:02pm 0 VERSION_BUMP 7b14e8f2