search

alilleybrinker / cargo-spdx

Generate an SPDX Software Bill of Materials for Rust crates.
https://crates.io/crates/cargo-spdx
Other
19 stars 2 forks source link
rust sbom spdx

readme

cargo-spdx

cargo-spdx is currently in development and not yet ready for use.

cargo-spdx provides a cargo subcommand to generate an SPDX Software Bill of Materials (SBOM) for a Rust crate.

Usage

cargo spdx creates an SBOM for the current crate.

cargo spdx build wraps cargo build, producing SBOMs for each produced binary.

See cargo spdx --help for more detail.

Contributing

Anyone is welcome to contribute. You can find the list of open issues in the issue tracker, or talk with the developers on the Rust Secure Code Working Group Zulip channel. Make sure to mention cargo-spdx or to tag alilleybrinker.

License

cargo-spdx is dual-licensed with the MIT or Apache 2.0 licenses.