Syft SBOM Generator for Containers and Filesystems
Syft by Anchore is a CLI tool for generating Software Bills of Materials (SBOMs) from container images and filesystems. Supports CycloneDX, SPDX, and multiple output formats with coverage across dozens of packaging ecosystems including npm, PyPI, Go, and more.
What it does
Syft SBOM Generator for Containers and Filesystems
Syft by Anchore is a CLI tool for generating Software Bills of Materials (SBOMs) from container images and filesystems. Supports CycloneDX, SPDX, and multiple output formats with coverage across dozens of packaging ecosystems including npm, PyPI, Go, and more.
Installation
Requirements and caveats from upstream:
- Supports dozens of packaging ecosystems (e.g. Alpine (apk), Debian (dpkg), RPM, Go, Python, Java, JavaScript, Ruby, Rust, PHP, .NET, and many more)
- Supports OCI, Docker, Singularity, and more image formats
- See Installation docs for more ways to get Syft, including Homebrew, Docker, Scoop, Chocolatey, Nix, and more!
Basic usage or getting-started notes:
-
New to Syft? Check out the Getting Started guide for a walkthrough!
-
The quickest way to get up and going:
-
bash
-
Source: https://github.com/anchore/syft
-
Extracted from upstream docs: https://raw.githubusercontent.com/anchore/syft/HEAD/README.md
Source
Capabilities
Install
Quality
deterministic score 0.45 from registry signals: · indexed on github topic:agent-skills · 8 github stars · SKILL.md body (1,386 chars)