CycloneDX: Releases, patches & end-of-life
QMETHODS GmbH

Lifecycle guide for CycloneDX from OWASP Foundation

All releases, patches, maintenance and support periods at a glance

All supported productsFree Versio.io trial
📅 Last update on 2026-04-16

What is CycloneDX?

Automate product release and end-of-life managementOWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction.
 

The entire lifecycle of CycloneDX

The following figure shows you the visualised product life cycle of CycloneDX. You can see all releases with the latest patch version, the long-term support characteristics (orange flag in the green circle, the periods for version provision, maintenance and support.
CycloneDX (OWASP Foundation) release, version and end-of-life information
XCycloneDX (OWASP Foundation) release, version and end-of-life information
Figure: Release, patch and end-of-life cycle of product CycloneDX (OWASP Foundation)
 

Facts and figures about CycloneDX

Product
CycloneDX
Vendor
OWASP Foundation
Latest version
1.7
Number of releases
8
Number of versions
9
Number of unstable versions
0
Number of versions affected by CVE
-
 
 

Questions or interested? Talk to me!


Lukas Böttcher
Lukas Böttcher
Business Development Manager
P:  +49-30-221986-51
LinkedIn