[sbom] Need an sbom for the npm package

AppThreat / atom

Atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.

https://appthreat.com

Apache License 2.0

52 stars 2 forks source link

[sbom] Need an sbom for the npm package #164

Open prabhu opened 6 days ago

prabhu commented 6 days ago

The npm package bundles a number of jar and php files under the plugins directory. These must be expressed in a separate sbom file. The work would likely involve enhancements to cdxgen.