Blog
Announcements, case studies, and release changelogs from the Bomly project.
Why I built yet another dependency graph scanner
I know, another dependency scanner. But here's the design bet behind Bomly: one resolved dependency graph powering SBOMs, vulnerability and license audits, package explanations, and Git-ref diffs — from your terminal to CI to agents.
Read
Announcing Bomly
A free, open-source CLI and GitHub Action for dependency diffs, SBOMs, vulnerability and license audits, and explaining why packages are present in your builds.
Read