Our mission is to support development of open source tooling for efficient and effective exchange of software bill of materials (SBOM) to enable license compliance, security, export control, pedigree and provenance workflows.

Participating Projects

FOUNDING MEMBERS

“The more we automate compliance processing, the better we are able to advance agile development and rapid response to address required changes such as security issues.”

Dirk Hohndel, VMware

JOIN THE COMMUNITY

The following projects are working together on the creation of open source reference toolchain(s) for automating the generation and use of software bill of materials to support license compliance, vulnerability management, and other policies.

JOIN THE DISCUSSION

NEWS

Tern 2.0.0 now available

| News | No Comments
New release includes a ‘Dockerfile lock’ feature and inclusion of Scancode data in default reports Tern is a VMware-originated open source container inspection tool. Since Tern’s last release, new features…

The Linux Foundation’s Automated Compliance Work Garners New Funding, Advances Tools Development

| News | No Comments
Google, Siemens and VMware commit to the Automated Compliance Tooling project, community accelerating work on Tern, OSS Review Toolkit, FOSSology and Quartermaster San Francisco, USA – December 12, 2019 – The…