Decision Workspace
uv-sbom vs cargo-auditable vs sbom-tools
Side-by-side comparison of Rust crates
50
uv-sbom
experimentalv2.0.1
SBOM generation tool for uv projects - Generate CycloneDX SBOMs from uv.lock files
56
cargo-auditable
growingv0.7.4
Make production Rust binaries auditable
43
sbom-tools
experimentalv0.1.17
Semantic SBOM diff and analysis tool
Core Metrics
| uv-sbom | cargo-auditable | sbom-tools | |
|---|---|---|---|
| Health Score | 50 | 56 | 43 |
| Total Downloads | 111 | 617.5K | 466 |
| 30d Downloads | 49 | 39.5K | 293 |
| Dependents | 0 | 0 | 0 |
| Releases | 8 | 24 | 18 |
| Last Updated | 7d ago | 23d ago | 6d ago |
| Age | 2m | 3y 8m | 1m |
Health Breakdown
uv-sbom
Maintenance
16
Quality
13
Community
6
Popularity
2
Documentation
13
cargo-auditable
Maintenance
18
Quality
13
Community
8
Popularity
7
Documentation
10
sbom-tools
Maintenance
13
Quality
9
Community
6
Popularity
3
Documentation
12
Technical Details
| uv-sbom | cargo-auditable | sbom-tools | |
|---|---|---|---|
| Version | 2.0.1 | 0.7.4 | 0.1.17 |
| Stable (≥1.0) | ✓ Yes | ✗ No | ✗ No |
| License | MIT | MIT OR Apache-2.0 | MIT |
| Dependencies | 20 | 11 | 31 |
| Crate Size | 206KB | 35KB | 4.9MB |
| Features | 0 | 0 | 2 |
| Yanked % | 0.0% | 0.0% | 0.0% |
| Edition | 2021 | 2021 | 2024 |
| MSRV | — | — | 1.88 |
| Owners | 1 | 2 | 1 |
Links
Quick Verdict
- •cargo-auditable leads with a health score of 56/100, but none of the options score above 80.
- •cargo-auditable, sbom-tools are pre-1.0 — API may change.