CycloneDX Bill of Materials Specification (ECMA-424)
@cyclonedx.bsky.social
OWASP CycloneDX is a modern standard for the software supply chain. #SBOM #SaaSBOM #CBOM #MLBOM #AIBOM #HBOM #VEX
CycloneDX is an open industry specification standardized by Ecma TC54 as ECMA-424.
https://cyclonedx.org
https://tc54.org/cyclonedx/
CycloneDX is an open industry specification standardized by Ecma TC54 as ECMA-424.
https://cyclonedx.org
https://tc54.org/cyclonedx/
CycloneDX v1.7 is here!
The latest release strengthens software & system transparency with:
- Cryptography BOM (CBOM)
- Data provenance & citations
- Intellectual property visibility
Learn more: cyclonedx.org/news/cyclone...
#OWASP #SBOM #CBOM #CyberSecurity
The latest release strengthens software & system transparency with:
- Cryptography BOM (CBOM)
- Data provenance & citations
- Intellectual property visibility
Learn more: cyclonedx.org/news/cyclone...
#OWASP #SBOM #CBOM #CyberSecurity
CycloneDX SBOM Spec (OWASP) on X: "CycloneDX v1.7 is here! The latest release strengthens software & system transparency with: - Cryptography BOM (CBOM) - Data provenance & citations - Intellectual property visibility Learn more: https://t.co/VjHCDgC5tL #OWASP #CycloneDX #SBOM #CBOM #CyberSecurity" / X
CycloneDX v1.7 is here! The latest release strengthens software & system transparency with: - Cryptography BOM (CBOM) - Data provenance & citations - Intellectual property visibility Learn more: https://t.co/VjHCDgC5tL #OWASP #CycloneDX #SBOM #CBOM #CyberSecurity
x.com
October 21, 2025 at 3:40 PM
CycloneDX v1.7 is here!
The latest release strengthens software & system transparency with:
- Cryptography BOM (CBOM)
- Data provenance & citations
- Intellectual property visibility
Learn more: cyclonedx.org/news/cyclone...
#OWASP #SBOM #CBOM #CyberSecurity
The latest release strengthens software & system transparency with:
- Cryptography BOM (CBOM)
- Data provenance & citations
- Intellectual property visibility
Learn more: cyclonedx.org/news/cyclone...
#OWASP #SBOM #CBOM #CyberSecurity
Join us on Wed May 28, 2025 in Barcelona for a hands-on hackathon to test Beta 1 of the Transparency Exchange API (TEA) — a new way to securely exchange SBOMs, attestations & more.
Free registration, thanks to @owasp.org and Ecma International.
cyclonedx.org/events/hacka...
#CycloneDX #SBOM
Free registration, thanks to @owasp.org and Ecma International.
cyclonedx.org/events/hacka...
#CycloneDX #SBOM
Transparency Exchange API (TEA) Hackathon - Barcelona 2025 | CycloneDX
Join us in Barcelona to test and shape the Transparency Exchange API, the next evolution in secure supply chain communication.
cyclonedx.org
April 21, 2025 at 8:39 PM
Join us on Wed May 28, 2025 in Barcelona for a hands-on hackathon to test Beta 1 of the Transparency Exchange API (TEA) — a new way to securely exchange SBOMs, attestations & more.
Free registration, thanks to @owasp.org and Ecma International.
cyclonedx.org/events/hacka...
#CycloneDX #SBOM
Free registration, thanks to @owasp.org and Ecma International.
cyclonedx.org/events/hacka...
#CycloneDX #SBOM
Reposted by CycloneDX Bill of Materials Specification (ECMA-424)
Honored to be discussing @cyclonedx.bsky.social and machine-readable attestations with Anchore this month. Join me! This is going to be fun and educational for anyone not familiar with CycloneDX Attestations (CDXA). This is an ideal solution for EO 14144 which requires machine-readable attestations.
🚨 New Webinar 🚨 The need for verifiable trust in #software components is critical. Learn to build on #SBOMs w/ CycloneDX attestation plus how to create cryptographically verifiable evidence of #security practices, #automate manual audit workflows & more. https://get.anchore.com/cyclonedxandsboms/
February 15, 2025 at 11:04 PM
Honored to be discussing @cyclonedx.bsky.social and machine-readable attestations with Anchore this month. Join me! This is going to be fun and educational for anyone not familiar with CycloneDX Attestations (CDXA). This is an ideal solution for EO 14144 which requires machine-readable attestations.
Reposted by CycloneDX Bill of Materials Specification (ECMA-424)
The continued innovation happening in @cyclonedx.bsky.social is truly inspiring. This week, its from the cdxgen team with "cdx1", a family of open-source, SOTA machine learning (ML) models purpose-built for xBOM analysis, validation, and reasoning.
www.linkedin.com/pulse/cdx1-u...
#OWASP #SBOM
www.linkedin.com/pulse/cdx1-u...
#OWASP #SBOM
cdx1 - Unlocking the Next Frontier in xBOM Analysis
If asked to name an incubator that has produced hundreds of projects and tens of highly valuable unicorns, one need only mention the OWASP Foundation. While many in the Western world erroneously assum...
www.linkedin.com
February 10, 2025 at 7:31 PM
The continued innovation happening in @cyclonedx.bsky.social is truly inspiring. This week, its from the cdxgen team with "cdx1", a family of open-source, SOTA machine learning (ML) models purpose-built for xBOM analysis, validation, and reasoning.
www.linkedin.com/pulse/cdx1-u...
#OWASP #SBOM
www.linkedin.com/pulse/cdx1-u...
#OWASP #SBOM
Reposted by CycloneDX Bill of Materials Specification (ECMA-424)
From @cyclonedx.bsky.social Level up your Ruby SBOMs with cdxgen v11.1.0 - now featuring #evinse for enhanced security and insights. Chat with #cdxgenGPT to learn more. chatgpt.com/g/g-673bfeb4...
ChatGPT - CycloneDX Generator (cdxgen)
I'm a CycloneDX and xBOM expert.
chatgpt.com
January 19, 2025 at 6:43 PM
From @cyclonedx.bsky.social Level up your Ruby SBOMs with cdxgen v11.1.0 - now featuring #evinse for enhanced security and insights. Chat with #cdxgenGPT to learn more. chatgpt.com/g/g-673bfeb4...
Reposted by CycloneDX Bill of Materials Specification (ECMA-424)
From Jeff Williams at @cyclonedx.bsky.social
"The new Cybersecurity EO requires machine readable secure software development attestations. Good thing the OWASP CycloneDX project already created the CDXA standard to capture attestations."
Check it out: cyclonedx.org/capabilities...
"The new Cybersecurity EO requires machine readable secure software development attestations. Good thing the OWASP CycloneDX project already created the CDXA standard to capture attestations."
Check it out: cyclonedx.org/capabilities...
January 17, 2025 at 9:37 AM
From Jeff Williams at @cyclonedx.bsky.social
"The new Cybersecurity EO requires machine readable secure software development attestations. Good thing the OWASP CycloneDX project already created the CDXA standard to capture attestations."
Check it out: cyclonedx.org/capabilities...
"The new Cybersecurity EO requires machine readable secure software development attestations. Good thing the OWASP CycloneDX project already created the CDXA standard to capture attestations."
Check it out: cyclonedx.org/capabilities...
Reposted by CycloneDX Bill of Materials Specification (ECMA-424)
At the first ever KoalaCon @owasp.org shared insights into how TEA (Transparency Exchange API) can help automate your product lifecycle. This will be essential to dependency management and vulnerability management in the future. And you can be part of it! #cybersec #appsec #dependency-management
KoalaCon 2024 was a huge success. Thank you to all the speakers, including Olle E Johansson, Anthony Harrison, Niklas Düster, Viktor Petersson, and Piotr P. Karwasz. Couldn't attend. No worries, the recording is available on YouTube.
youtu.be/NStzYW4WnEE?...
#OWASP #SBOM #SoftwareTransparency
youtu.be/NStzYW4WnEE?...
#OWASP #SBOM #SoftwareTransparency
OWASP KoalaCon 2024
YouTube video by OWASP CycloneDX
youtu.be
December 10, 2024 at 6:08 AM
At the first ever KoalaCon @owasp.org shared insights into how TEA (Transparency Exchange API) can help automate your product lifecycle. This will be essential to dependency management and vulnerability management in the future. And you can be part of it! #cybersec #appsec #dependency-management
Reposted by CycloneDX Bill of Materials Specification (ECMA-424)
KoalaCon 2024 was a huge success. Thank you to all the speakers, including Olle E Johansson, Anthony Harrison, Niklas Düster, Viktor Petersson, and Piotr P. Karwasz. Couldn't attend. No worries, the recording is available on YouTube.
youtu.be/NStzYW4WnEE?...
#OWASP #SBOM #SoftwareTransparency
youtu.be/NStzYW4WnEE?...
#OWASP #SBOM #SoftwareTransparency
OWASP KoalaCon 2024
YouTube video by OWASP CycloneDX
youtu.be
December 2, 2024 at 11:29 PM
KoalaCon 2024 was a huge success. Thank you to all the speakers, including Olle E Johansson, Anthony Harrison, Niklas Düster, Viktor Petersson, and Piotr P. Karwasz. Couldn't attend. No worries, the recording is available on YouTube.
youtu.be/NStzYW4WnEE?...
#OWASP #SBOM #SoftwareTransparency
youtu.be/NStzYW4WnEE?...
#OWASP #SBOM #SoftwareTransparency