{"id":20617769,"url":"https://github.com/cyclonedx/gh-python-generate-sbom","last_synced_at":"2025-04-15T11:33:29.721Z","repository":{"id":39874188,"uuid":"279290167","full_name":"CycloneDX/gh-python-generate-sbom","owner":"CycloneDX","description":"GitHub action to generate a CycloneDX SBOM for Python","archived":false,"fork":false,"pushed_at":"2024-07-15T17:42:36.000Z","size":121,"stargazers_count":13,"open_issues_count":4,"forks_count":4,"subscribers_count":6,"default_branch":"master","last_synced_at":"2024-11-11T15:41:58.519Z","etag":null,"topics":["bill-of-materials","bom","cyclonedx","github-action","owasp","python","python3","sbom","sbom-generator","software-bill-of-materials"],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/CycloneDX.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null},"funding":{"custom":["https://owasp.org/donate/?reponame=www-project-cyclonedx\u0026title=OWASP+CycloneDX"]}},"created_at":"2020-07-13T11:58:49.000Z","updated_at":"2024-07-24T17:55:04.000Z","dependencies_parsed_at":"2024-01-06T11:43:25.948Z","dependency_job_id":"f2b4b7c0-1363-4d2f-9852-49319b230867","html_url":"https://github.com/CycloneDX/gh-python-generate-sbom","commit_stats":{"total_commits":26,"total_committers":6,"mean_commits":4.333333333333333,"dds":0.3076923076923077,"last_synced_commit":"38408001bba6b6f3979037bc0079582bd5e332b3"},"previous_names":[],"tags_count":6,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CycloneDX%2Fgh-python-generate-sbom","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CycloneDX%2Fgh-python-generate-sbom/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CycloneDX%2Fgh-python-generate-sbom/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CycloneDX%2Fgh-python-generate-sbom/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/CycloneDX","download_url":"https://codeload.github.com/CycloneDX/gh-python-generate-sbom/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":224911873,"owners_count":17390844,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bill-of-materials","bom","cyclonedx","github-action","owasp","python","python3","sbom","sbom-generator","software-bill-of-materials"],"created_at":"2024-11-16T12:05:55.176Z","updated_at":"2025-04-15T11:33:29.693Z","avatar_url":"https://github.com/CycloneDX.png","language":"JavaScript","readme":"\u003e [!NOTE]\n\u003e This GitHub Action is considered deprecated.  \n\u003e Instead, you may use the underlying tool directly: [cyclonedx-bom](https://pypi.org/project/cyclonedx-bom/)\n\u003e ```yaml      \n\u003e - name: Install SBOM tool\n\u003e   run: pipx install cyclonedx-bom\n\u003e - name: Create SBOM step\n\u003e   # see for usage: https://pypi.org/project/cyclonedx-bom/\n\u003e   run: cyclonedx-py --help\n\u003e ```\n\n----\n\n# GitHub action to generate a CycloneDX SBOM for Python\n\n[![Website](https://img.shields.io/badge/https://-cyclonedx.org-blue.svg)](https://cyclonedx.org/)\n[![Slack Invite](https://img.shields.io/badge/Slack-Join-blue?logo=slack\u0026labelColor=393939)](https://cyclonedx.org/slack/invite)\n[![Group Discussion](https://img.shields.io/badge/discussion-groups.io-blue.svg)](https://groups.io/g/CycloneDX)\n[![Twitter](https://img.shields.io/twitter/url/http/shields.io.svg?style=social\u0026label=Follow)](https://twitter.com/CycloneDX_Spec)\n\n\n## Inputs\n\n### `input`\n\nThe path to a pip requirements file, default is \"./requirements.txt\"\n\nBe sure to quote paths with spaces.\n\n### `output`\n\nOutput filename, default is \"./bom.xml\"\n\nBe sure to quote paths with spaces.\n\n### `format`\n\nOutput format, one of \"json\"/\"xml\", default is \"xml\"\n\n## Example usage\n\n```yaml\n- name: Generate Python SBOM\n  uses: CycloneDX/gh-python-generate-sbom@v2\n  with:\n    input: ./requirements.txt\n    output: ./bom.json\n    format: json\n```\n\n----\n\n## Internals\n\nThis GitHub ation depends on `cyclonedx-bom\u003e=1.4.0,\u003c4`. \nSee [`cyclonedx-bom` on PyPI](https://pypi.org/project/cyclonedx-bom/).\n","funding_links":["https://owasp.org/donate/?reponame=www-project-cyclonedx\u0026title=OWASP+CycloneDX"],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcyclonedx%2Fgh-python-generate-sbom","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcyclonedx%2Fgh-python-generate-sbom","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcyclonedx%2Fgh-python-generate-sbom/lists"}