The data formats used to generate and consume SBOMs include Software Package Data eXchange (SPDX), CycloneDX, and Software Identification (SWID) tags.

Authors

• Person: Not available Organization: Department for Science, Innovation and Technology
  Open source software best practices and supply chain risk ... - GOV.UK

Sources

• Open source software best practices and supply chain risk ... - GOV.UK www.gov.uk Department for Science, Innovation and Technology via serper

Referenced by nodes (2)

• SPDX concept
• CycloneDX concept