Skip to main content

Our mission is to support development of open source tooling for efficient and effective exchange of software bill of materials (SBOM) to enable license compliance, security, export control, pedigree and provenance workflows.

Participating Projects


“The more we automate compliance processing, the better we are able to advance agile development and rapid response to address required changes such as security issues.”

Dirk Hohndel, VMware


The following projects are working together on the creation of open source reference toolchain(s) for automating the generation and use of software bill of materials to support license compliance, vulnerability management, and other policies.



Tern 2.0.0 now available

| News | No Comments
New release includes a ‘Dockerfile lock’ feature and inclusion of Scancode data in default reports Tern is a VMware-originated open source container inspection tool. Since Tern’s last release, new features…

The Linux Foundation’s Automated Compliance Work Garners New Funding, Advances Tools Development

| News | No Comments
Google, Siemens and VMware commit to the Automated Compliance Tooling project, community accelerating work on Tern, OSS Review Toolkit, FOSSology and Quartermaster San Francisco, USA – December 12, 2019 – The…