Kubernetes-native Software Bill of Materials (SBOM) Visualization & Governance Platform
Documentation
GitHubIngest thousands of SPDX SBOMs, scan for vulnerabilities via OSV, enforce license compliance, and apply VEX statements — all visualized in a fast Angular dashboard backed by ClickHouse analytics.
High Performance
ClickHouse MergeTree tables handle millions of dependency records.
Virtual scrolling and OnPush change detection keep the UI responsive.Vulnerability Intelligence
Automatic OSV API lookups for every package URL.
Daily CVE Refresher finds newly disclosed vulnerabilities without re-scanning.License Governance
Externalized license policy and exceptions.
CNCF Allowed Third-Party License Policy enforced out of the box.S3 Ingestion
Stream SBOMs from any S3-compatible bucket — AWS, MinIO, GCS, Oracle Cloud.
No PVCs, no git-sync, scales to any repo size.API & UI
REST endpoints power a modern Angular interface with search, virtual scrolling,
and configurable theming.Cloud Native
Helm chart with 19 templates. ClickHouse Operator for stateful lifecycle.
Docker Compose for local development.