Knowledge Tree
claim
The philips-software/SPDXMerge tool merges multiple SPDX JSON or Tag-value SBOMs into a parent SBOM, supporting deep merge (consolidate contents) and shallow merge (create references) with GitHub Action and Docker support.
Authors
Sources
- bureado/awesome-software-supply-chain-security - GitHub github.com via serper
Referenced by nodes (3)
- Software Bill of Materials (SBOM) concept
- SPDX concept
- Docker concept