Benchmark Repositories of SBOMs for PIQUE-SBOM-SUPPLYCHAIN-SEC Quality Model

This dataset contains two benchmark repositories of Software Bill of Materials (SBOMs) used in the development and evaluation of the PIQUE-SBOM-SUPPLYCHAIN-SEC quality model, available at https://github.com/MSUSEL/msusel-pique-sbom-supplychain-sec. The SBOMs in these repositories were generated from real-world NPM projects and Docker images using the cyclonedx-npm, trivy, and syft tools and follow the CycloneDX specification. The SBOMs were used to derive the quality models for version 2.0