deepbits
Deepbits logo

Jun

01

2025

Introducing Dr. Binary: Agentic Binary Analysis for Everyone

Jan

01

2025

Deepbits Secures DARPA INGOTS Contract to Advance Automated Exploit Generation for Android

Sep

01

2024

Deepbits Awarded NSF SBIR Phase I Grant for Pioneering AI-Powered Software Supply Chain Security Solution

Apr

27

2023

Deepbits Presents AI-Powered Solution for Software Supply Chain Security and Compliance at RSA CISA Booth

Apr

27

2023

Deepbits Selected as Awardee for DHS Silicon Valley Innovation Program to Enhance Software Supply Chain Security

Apr

11

2023

Deepbits Released Free GitHub Action and SBOM Badge, Enabling Automated Creation and Risk Analysis of Software Bill of Materials (SBOM)

Mar

17

2023

Deepbits Released Free Software Supply Chain Arsenal

Oct

21

2022

Riverside’s Deepbits Digs Deep to Stop Cyber Attacks

Jul

23

2021

Deepbits Won NSF SBIR Phase I Award for “Enabling Robust Binary Code AI via Novel Disassembly”

Mar

11

2020

Deepbits Won AFWERX SBIR Award for “Next Generation Threat Management Platform For USAF’s Software Assets”

Jan

01

2018

Deepbits Won NSF SBIR Phase I Award for “Building Extensible and Customizable Binary Code Analytics Engine for Malware Intelligence as a Service”

Deepbits Released Free GitHub Action and SBOM Badge, Enabling Automated Creation and Risk Analysis of Software Bill of Materials (SBOM)

Share via TwitterShare via FaceBook

Deepbits SBOM Action

[Riverside, California] - DeepBits, a pioneer in AI-powered software supply chain security and compliance, has announced the release of a free GitHub action and SBOM badge that enables automated creation and risk analysis of software bill of materials (SBOM) from public code repositories. The GitHub action generates SBOMs and analyzes them to find potential risks, such as vulnerabilities, licenses, and malware. The SBOM badge provides transparent and up-to-date information about the software's security and risk posture, including its latest SBOM and threat analysis results.

The new GitHub action, available in GitHub Marketplace, provides developers with an easy-to-use tool for creating SBOMs automatically. With the action integrated into their GitHub workflows, developers can now generate and publish SBOMs for their projects, which can help identify potential risks.

The GitHub action can also analyze the SBOM to find vulnerabilities, malware, and license issues. By identifying these risks early in the development process, developers can take steps to address them before they become more significant problems.

The new SBOM badge can be added to a project's README file or website. By clicking on the badge, users can obtain the latest SBOM and its threat analysis results, including malware, vulnerabilities, and licenses. This helps build trust with users, customers, and other stakeholders by providing transparent and up-to-date information about the software's security and risk posture.

"We're excited to offer these free tools to the open source community," said Heng Yin, CEO of DeepBits. "Our new GitHub action and SBOM badge make it easy to track and manage software dependencies while providing valuable risk analysis information. This helps improve security and reduce risk for everyone involved in the software development process."

The new tools are part of Deepbits' ongoing commitment to providing open source community with the tools and resources they need to develop high-quality, secure open source software.

For more information about Deepbits and its products, please visit www.deepbits.com.