generating-sbom
CommunityGenerate compliant SBOMs with confidence
Authorrocklambros
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill removes the uncertainty and manual effort from producing a trustworthy Software Bill of Materials for software releases, container images, and compliance reviews.
Core Features & Use Cases
- Polyglot Coverage: Handles Python, Node.js, Go, Maven, Rust, Ruby, NuGet, Linux packages, and container images.
- Format Selection: Produces CycloneDX or SPDX output depending on the downstream consumer or compliance requirement.
- Validation and Completeness: Checks required metadata such as supplier, version, PURL, dependency relationships, and schema validity.
- Use Case: A security engineer can generate a release-ready SBOM for a mixed Python and JavaScript monorepo, validate it, and flag components missing license data before sharing it with a customer.
Quick Start
Ask the skill to generate a validated CycloneDX or SPDX SBOM for your resolved repository or container image and to report any missing licenses, suppliers, or dependency information.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: generating-sbom Download link: https://github.com/rocklambros/rcs/archive/main.zip#generating-sbom Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.