Skills
.Work. You
Rest

endor-sbom

Official

Export, analyze, and compare SBOMs.

Software Engineering#compliance#drift-detection#spdx#dependency-analysis#sbom#software-bill-of-materials#cyclonedx
AuthorEndor-Solutions-Architecture
Version1.0.0
Installs0

System Documentation

What problem does it solve?

SBOM management helps teams gain visibility into software component inventories, enabling export, import, analysis, and comparison of SBOMs to improve security posture and compliance.

Core Features & Use Cases

  • Export SBOMs in CycloneDX or SPDX formats for your projects.
  • Import external SBOMs to analyze components, licenses, and vulnerabilities.
  • Analyze and compare SBOMs to detect drift, assess risk, and support compliance reporting.
  • Use Case: You maintain a multi-repo project and want to verify consistent component inventories across releases.

Quick Start

  • Ensure the MCP server is configured (run /endor-setup if not).
  • Scan your repository to create or update the SBOM (run /endor-scan).
  • Export an SBOM in CycloneDX format: npx -y endorctl sbom export --project-uuid {uuid} --format cyclonedx --output sbom-cyclonedx.json
  • Optional: Export SPDX: npx -y endorctl sbom export --project-uuid {uuid} --format spdx --output sbom-spdx.json

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: endor-sbom
Download link: https://github.com/Endor-Solutions-Architecture/endor-solutions-claude-skills/archive/main.zip#endor-sbom

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.