Adding Amazon Inspector SBOM Generator #12
Conversation
tools.yaml
Outdated
| @@ -1587,6 +1587,15 @@ | |||
| categories: | |||
| - proprietary | |||
| - analysis | |||
| - name: Amazon Inspector SBOM Generator | |||
| publisher: Amazon Inspector | |||
| description: Amazon Inspector SBOM Generator (inspector-sbomgen) is a tool that produces SBOMs for archives, container images, directories, local systems, and compiled Go and Rust binaries. The tool scans supported artifacts with multiple collectors to generate an inventory of installed packages and associated metadata. These SBOMs can then be used for vulnerability scanning with the Amazon Inspector Scan SBOM API (active AWS account required). | |||
There was a problem hiding this comment.
On the website, the description text will be cut off after 250 characters.
Please shorten the text.
There was a problem hiding this comment.
Thank you. I have shortened the description text to 250 characters.
| websiteUrl: https://docs.aws.amazon.com/inspector/latest/user/sbom-generator.html | ||
| categories: | ||
| - proprietary | ||
| - analysis |
There was a problem hiding this comment.
is this category really true?
tool-center/tool-categories.yaml
Lines 13 to 15 in 3bc400e
There was a problem hiding this comment.
Hi @jkowalleck . Thanks for the feedback. Yes, Amazon Inspector SBOM Generator does support evaluating CycloneDX SBOM for vulnerability.
tools.yaml
Outdated
| - proprietary | ||
| - analysis | ||
| - build-integration | ||
| - distribute |
There was a problem hiding this comment.
is this category really true?
tool-center/tool-categories.yaml
Lines 34 to 36 in 3bc400e
There was a problem hiding this comment.
Hi @jkowalleck . Thanks for the call-out. I have removed this category.
This PR adss Amazon Inspector SBOM Generator (inspector-sbomgen) to the list of CycloneDX tools.