Package: wnpp Severity: wishlist Owner: Marc Leeman <[email protected]> X-Debbugs-Cc: [email protected]
* Package name : debsbom Version : v0.6.2 Upstream Contact: Felix Moessbauer <[email protected]> * URL : https://github.com/siemens/debsbom * License : MIT Programming Lang: Python Description : SBOM generator for Debian-based distributions debsbom generates SBOMs (Software Bill of Materials) for distributions based on Debian in the two standard formats SPDX and CycloneDX. The generated SBOM includes all installed binary packages and also contains Debian Source packages. Source packages are especially relevant for security as CVEs in the Debian ecosystem are filed not against the installed binary packages, but source packages. The names of source and binary packages must not always be the same, and in some cases a single source package builds a number of binary packages. This package is useful for users who want to generate SBOMs for their Debian-based systems, which can be important for security and compliance purposes. It can also be a dependency for other packages that require SBOM generation functionality. I am going to integrate it in our internal infrastructure at Televic, but I think it can be useful for the wider Debian community as well. Currently, I am planning to maintain this package on my personal salsa repository, but I am open to transferring it to the Debian project if there is interest from the community.
