Product

Introducing self-service SBOMs

Developers and compliance teams get a new SBOM generation tool for cloud repositories.

Mason Knight

Creative Director

Following the precedent set by Executive Order 14028, security and compliance teams are increasingly requesting software bills of materials (SBOMs) to identify the open source components of their software projects, assess their vulnerability to emerging threats, and verify alignment with license policies. So, we asked ourselves, how do we make SBOMs easier to generate and share?

Today, we're happy to announce a new Export SBOM function that allows anyone with read access to a Framer cloud repository to generate an NTIA-compliant SBOM with a single click. The resulting JSON file saves project dependencies and metadata, like versions and licenses in the industry-standard SPDX format, which can then be used with security and compliance workflows and tools or reviewed in Microsoft Excel (use a JSON-to-CSV converter for compatibility with Google Sheets).

As part of Framer's supply chain security solution, self-service SBOMs are free for all cloud repositories on Framer.

Product

Introducing self-service SBOMs

Developers and compliance teams get a new SBOM generation tool for cloud repositories.

Mason Knight

Creative Director

Following the precedent set by Executive Order 14028, security and compliance teams are increasingly requesting software bills of materials (SBOMs) to identify the open source components of their software projects, assess their vulnerability to emerging threats, and verify alignment with license policies. So, we asked ourselves, how do we make SBOMs easier to generate and share?

Today, we're happy to announce a new Export SBOM function that allows anyone with read access to a Framer cloud repository to generate an NTIA-compliant SBOM with a single click. The resulting JSON file saves project dependencies and metadata, like versions and licenses in the industry-standard SPDX format, which can then be used with security and compliance workflows and tools or reviewed in Microsoft Excel (use a JSON-to-CSV converter for compatibility with Google Sheets).

As part of Framer's supply chain security solution, self-service SBOMs are free for all cloud repositories on Framer.

Product

Introducing self-service SBOMs

Developers and compliance teams get a new SBOM generation tool for cloud repositories.

Mason Knight

Creative Director

Following the precedent set by Executive Order 14028, security and compliance teams are increasingly requesting software bills of materials (SBOMs) to identify the open source components of their software projects, assess their vulnerability to emerging threats, and verify alignment with license policies. So, we asked ourselves, how do we make SBOMs easier to generate and share?

Today, we're happy to announce a new Export SBOM function that allows anyone with read access to a Framer cloud repository to generate an NTIA-compliant SBOM with a single click. The resulting JSON file saves project dependencies and metadata, like versions and licenses in the industry-standard SPDX format, which can then be used with security and compliance workflows and tools or reviewed in Microsoft Excel (use a JSON-to-CSV converter for compatibility with Google Sheets).

As part of Framer's supply chain security solution, self-service SBOMs are free for all cloud repositories on Framer.

Product

Introducing self-service SBOMs

Developers and compliance teams get a new SBOM generation tool for cloud repositories.

Mason Knight

Creative Director

Following the precedent set by Executive Order 14028, security and compliance teams are increasingly requesting software bills of materials (SBOMs) to identify the open source components of their software projects, assess their vulnerability to emerging threats, and verify alignment with license policies. So, we asked ourselves, how do we make SBOMs easier to generate and share?

Today, we're happy to announce a new Export SBOM function that allows anyone with read access to a Framer cloud repository to generate an NTIA-compliant SBOM with a single click. The resulting JSON file saves project dependencies and metadata, like versions and licenses in the industry-standard SPDX format, which can then be used with security and compliance workflows and tools or reviewed in Microsoft Excel (use a JSON-to-CSV converter for compatibility with Google Sheets).

As part of Framer's supply chain security solution, self-service SBOMs are free for all cloud repositories on Framer.

Product

Introducing self-service SBOMs

Developers and compliance teams get a new SBOM generation tool for cloud repositories.

Mason Knight

Creative Director

Following the precedent set by Executive Order 14028, security and compliance teams are increasingly requesting software bills of materials (SBOMs) to identify the open source components of their software projects, assess their vulnerability to emerging threats, and verify alignment with license policies. So, we asked ourselves, how do we make SBOMs easier to generate and share?

Today, we're happy to announce a new Export SBOM function that allows anyone with read access to a Framer cloud repository to generate an NTIA-compliant SBOM with a single click. The resulting JSON file saves project dependencies and metadata, like versions and licenses in the industry-standard SPDX format, which can then be used with security and compliance workflows and tools or reviewed in Microsoft Excel (use a JSON-to-CSV converter for compatibility with Google Sheets).

As part of Framer's supply chain security solution, self-service SBOMs are free for all cloud repositories on Framer.

Other Blog Posts

Security

April 14, 2023

Generative AI has been dominating the news lately—but what exactly is it? Here’s what you need to know, and what it means for developers.

Policy

April 24, 2023

Create and share your own deployment protection rules, or use the rules from our great partners, like Datadog, Honeycomb, New Relic.

Open Source

April 24, 2023

Open source maintainers and security researchers embrace a new best practice to report and fix vulnerabilities.

Enterprise

April 24, 2023

Learn how to link Framer packages to their source repository and build instructions using the new provenance feature.

Engineering

April 24, 2023

Framer is proud to join 40 companies endorsing the Cybersecurity Tech Accord principles limiting offensive operations in cyberspace.

Education

April 24, 2023

How Framer Enterprise ensures secure and compliant developer workflows for highly regulated industries.

Company

April 24, 2023

Framer Copilot is the world's first AI developer tool at scale and is now available to every developer, team, organization, and enterprise.

Community

April 24, 2023

Learn about how the Framer Docs team uses Framer Projects to coordinate content, conduct reviews, and publish.

Other Blog Posts

Security

April 14, 2023

Generative AI has been dominating the news lately—but what exactly is it? Here’s what you need to know, and what it means for developers.

Policy

April 24, 2023

Create and share your own deployment protection rules, or use the rules from our great partners, like Datadog, Honeycomb, New Relic.

Open Source

April 24, 2023

Open source maintainers and security researchers embrace a new best practice to report and fix vulnerabilities.

Enterprise

April 24, 2023

Learn how to link Framer packages to their source repository and build instructions using the new provenance feature.

Engineering

April 24, 2023

Framer is proud to join 40 companies endorsing the Cybersecurity Tech Accord principles limiting offensive operations in cyberspace.

Education

April 24, 2023

How Framer Enterprise ensures secure and compliant developer workflows for highly regulated industries.

Company

April 24, 2023

Framer Copilot is the world's first AI developer tool at scale and is now available to every developer, team, organization, and enterprise.

Community

April 24, 2023

Learn about how the Framer Docs team uses Framer Projects to coordinate content, conduct reviews, and publish.

Other Blog Posts

Security

April 14, 2023

Generative AI has been dominating the news lately—but what exactly is it? Here’s what you need to know, and what it means for developers.

Policy

April 24, 2023

Create and share your own deployment protection rules, or use the rules from our great partners, like Datadog, Honeycomb, New Relic.

Open Source

April 24, 2023

Open source maintainers and security researchers embrace a new best practice to report and fix vulnerabilities.

Enterprise

April 24, 2023

Learn how to link Framer packages to their source repository and build instructions using the new provenance feature.

Engineering

April 24, 2023

Framer is proud to join 40 companies endorsing the Cybersecurity Tech Accord principles limiting offensive operations in cyberspace.

Education

April 24, 2023

How Framer Enterprise ensures secure and compliant developer workflows for highly regulated industries.

Company

April 24, 2023

Framer Copilot is the world's first AI developer tool at scale and is now available to every developer, team, organization, and enterprise.

Community

April 24, 2023

Learn about how the Framer Docs team uses Framer Projects to coordinate content, conduct reviews, and publish.

Other Blog Posts

Security

April 14, 2023

Generative AI has been dominating the news lately—but what exactly is it? Here’s what you need to know, and what it means for developers.

Policy

April 24, 2023

Create and share your own deployment protection rules, or use the rules from our great partners, like Datadog, Honeycomb, New Relic.

Open Source

April 24, 2023

Open source maintainers and security researchers embrace a new best practice to report and fix vulnerabilities.

Enterprise

April 24, 2023

Learn how to link Framer packages to their source repository and build instructions using the new provenance feature.

Engineering

April 24, 2023

Framer is proud to join 40 companies endorsing the Cybersecurity Tech Accord principles limiting offensive operations in cyberspace.

Education

April 24, 2023

How Framer Enterprise ensures secure and compliant developer workflows for highly regulated industries.

Company

April 24, 2023

Framer Copilot is the world's first AI developer tool at scale and is now available to every developer, team, organization, and enterprise.

Community

April 24, 2023

Learn about how the Framer Docs team uses Framer Projects to coordinate content, conduct reviews, and publish.

Other Blog Posts

Security

April 14, 2023

Generative AI has been dominating the news lately—but what exactly is it? Here’s what you need to know, and what it means for developers.

Policy

April 24, 2023

Create and share your own deployment protection rules, or use the rules from our great partners, like Datadog, Honeycomb, New Relic.

Open Source

April 24, 2023

Open source maintainers and security researchers embrace a new best practice to report and fix vulnerabilities.

Enterprise

April 24, 2023

Learn how to link Framer packages to their source repository and build instructions using the new provenance feature.

Engineering

April 24, 2023

Framer is proud to join 40 companies endorsing the Cybersecurity Tech Accord principles limiting offensive operations in cyberspace.

Education

April 24, 2023

How Framer Enterprise ensures secure and compliant developer workflows for highly regulated industries.

Company

April 24, 2023

Framer Copilot is the world's first AI developer tool at scale and is now available to every developer, team, organization, and enterprise.

Community

April 24, 2023

Learn about how the Framer Docs team uses Framer Projects to coordinate content, conduct reviews, and publish.