Jake’s Documentation

jake is a tool to check for your Python environments and applications that can:

  1. produce CycloneDX software bill-of-materials

  2. report on known vulnerabilities

jake is powered by Sonatype OSS Index and can also be used with Sonatype’s Nexus IQ Server.

Internally, jake utilises libraries from CycloneDX when producing Software Bill of Materials.

CycloneDX is a lightweight BOM specification that is easily created, human-readable, and simple to parse.