Introducing SBOM Generator, a Supply Chain Security Tool

Thu, 04 Jun 2026 00:00:00 +0000

Hello.

SK Telecom has released SBOM Generator, a supply chain security tool it developed in-house, as open source. SBOM Generator analyzes the components of your software and automatically produces a CycloneDX 1.6 SBOM (Software Bill of Materials).

As software supply chain security grows in importance, knowing exactly which open source components and versions are included becomes increasingly critical. SBOM Generator automates this process, easing the burden for both the producer and the receiver of software.

onot, the Open Source Notice Generator, Gets a Major Overhaul

Thu, 04 Jun 2026 00:00:00 +0000

Hello.

onot, the open source notice generator jointly developed by SK Telecom and Kakao, has been substantially overhauled. onot is a compliance tool that reads an SBOM (Software Bill of Materials) and automatically produces an open source license notice (OSS Notice). This update broadens both the input and output formats, and onot can now be used as a desktop app in addition to the command-line tool.

What’s New

It reads more SBOM formats

Previously onot accepted only SPDX documents. It can now also read CycloneDX (JSON, XML) and Excel. For SPDX it supports JSON, YAML, Tag-Value, and RDF. onot detects the input format from the file extension and content, so you do not need to specify the format yourself.

Blog on SK telecom Open Source

Introducing SBOM Generator, a Supply Chain Security Tool

onot, the Open Source Notice Generator, Gets a Major Overhaul

What’s New

It reads more SBOM formats