{"id":26633517,"url":"https://github.com/chains-project/sbom.exe","last_synced_at":"2026-03-10T03:34:15.899Z","repository":{"id":169180045,"uuid":"645086090","full_name":"chains-project/sbom.exe","owner":"chains-project","description":"calls the police if a prohibited class is loaded by the JVM http://arxiv.org/pdf/2407.00246","archived":false,"fork":false,"pushed_at":"2026-02-26T21:32:26.000Z","size":243273,"stargazers_count":9,"open_issues_count":16,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-02-27T03:36:36.507Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://arxiv.org/abs/2407.00246","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/chains-project.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2023-05-24T22:30:25.000Z","updated_at":"2026-01-06T21:49:23.000Z","dependencies_parsed_at":"2024-04-19T19:37:02.992Z","dependency_job_id":"8a658e5a-990e-46f4-9a3d-a7772df52613","html_url":"https://github.com/chains-project/sbom.exe","commit_stats":null,"previous_names":["algomaster99/terminator","assert-kth/terminator","assert-kth/sbom.exe","chains-project/sbom.exe"],"tags_count":16,"template":false,"template_full_name":null,"purl":"pkg:github/chains-project/sbom.exe","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/chains-project%2Fsbom.exe","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/chains-project%2Fsbom.exe/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/chains-project%2Fsbom.exe/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/chains-project%2Fsbom.exe/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/chains-project","download_url":"https://codeload.github.com/chains-project/sbom.exe/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/chains-project%2Fsbom.exe/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30323227,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-10T01:36:58.598Z","status":"online","status_checked_at":"2026-03-10T02:00:06.579Z","response_time":106,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-03-24T15:15:15.576Z","updated_at":"2026-03-10T03:34:15.875Z","avatar_url":"https://github.com/chains-project.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"# sbom.exe\n\n[![tests](https://github.com/ASSERT-KTH/terminator/actions/workflows/tests.yml/badge.svg)](https://github.com/ASSERT-KTH/terminator/actions/workflows/tests.yml)\n\nA tool to illustrate termination of Java virtual machine if a\nprohibited method is invoked.\nCheckout the README on that branch for instructions.\n\n## [Visualization by GitHub Next](https://githubnext.com/projects/repo-visualization/)\n\n![Visualization of the codebase](./diagram.svg)\n\n## Project structure\n\nThe project has two concepts - generating fingerprints and watching for\nprohibited classes.\n\n## Generation of fingerprints\n\nThe fingerprints are generated using the `classfile-fingerprint` CLI.\n\nIt has three subcommands.\nAll the commands take in the following parameters:\n\n**Required Parameters**\n\n|      Parameter      |  Type  | Description                                                                               |\n|:-------------------:|:------:|-------------------------------------------------------------------------------------------|\n| `output` or `input` | `File` | Path to index file. `output` will create a \u003cbr/\u003enew file. `input` will merge the indices. |\n\n1. `jdk`: Generate fingerprints for JDK classes. |\n\n2. `supply-chain`: Generate fingerprints for all the dependencies captured in\n   the SBOM.\n    - **Required Parameters**\n\n      | Parameter |  Type  | Description            |\n      |:---------:|:------:|------------------------|\n      |  `sbom`   | `File` | Path to the sbom file. |\n\n      \u003e `sbom` could be CycloneDX 1.4 or 1.5 JSON document.\n\n3. `runtime`: Generate fingerprints for all the classes loaded at runtime.\n    - **Required Parameters**\n\n      | Parameter |  Type   | Description                                                      |\n      |:---------:|:-------:|------------------------------------------------------------------|\n      | `project` | `File`  | Path to the project.                                             |\n      |     `executable-jar-module`      | `String` | The module \u003cbr/\u003e(`artifactID`)that generates the executable jar. |\n\n    - **Optional Parameters**\n\n      | Parameter |  Type  | Description             |\n      |:---------:|:------:|-------------------------|\n      |  `cleanup`   | `File` | Delete the temporary project after the process. |\n\n## Watching for prohibited classes\n\nThe `watchdog-agent` is a Java agent that watches for prohibited classes.\n\nIt takes in the following parameters:\n\n**Required Parameters**\n\n| Parameter |  Type  | Description             |\n|:---------:|:------:|-------------------------|\n|  `sbom`   | `File` | Path to the index file. |\n\n**Optional Parameters**\n\n|   Parameter    |   Type    | Description                                                                             |\n|:--------------:|:---------:|-----------------------------------------------------------------------------------------|\n| `skipShutdown` | `boolean` | If `true`, the JVM will not shutdown if a prohibited class is loaded. Default: `false`. |\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fchains-project%2Fsbom.exe","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fchains-project%2Fsbom.exe","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fchains-project%2Fsbom.exe/lists"}