From https://github.com/cyfinoid/sbomplay
SBOM Play is a client-side web application for analyzing Software Bill of Materials (SBOM) data from GitHub repositories, organizations, and users. Built for security professionals to identify dependency vulnerabilities, assess license compliance, and understand software supply chain risks in real-time. All analysis happens directly in your browser β no data ever leaves your machine.
Key Features:
- SBOM Analysis β Analyze SBOM data from GitHub organizations, users, and repositories
- Vulnerability Detection β OSV.dev integration for vulnerability scanning
- License Compliance β Comprehensive license categorization and risk assessment with 100+ recognized licenses
- Author Analysis β Author deduplication and funding opportunity detection
- SBOM Quality Assessment β Quality scoring based on multiple categories
- Privacy-First β All processing happens client-side in the browser
