close
Skip to content
You must be logged in to sponsor jkowalleck

Become a sponsor to Jan Kowalleck

@jkowalleck

Jan Kowalleck

jkowalleck
Nuremberg, Germany

Hi! I'm Jan Kowalleck, a software engineer and open-source maintainer focused on supply chain security and system transparency tooling.

I am a Project Co-Lead of CycloneDX, an open standard for system transparency under the umbrella of the OWASP Foundation. CycloneDX provides a standardized way to describe and exchange information about systems – including software, hardware, and other components – their dependencies, and their associated metadata.

In addition to maintaining tools and libraries, I also contribute to the CycloneDX specification itself, helping evolve the standard and foster greater transparency in (software/hardware/...) systems and their dependencies.

A large part of my work focuses on building and maintaining tools that allow developers to generate and work with CycloneDX data across multiple ecosystems, including the generation of Software Bills of Materials (SBOMs) and other system transparency artifacts.

Maintaining these tools involves much more than writing code. It includes reviewing contributions, fixing bugs, improving documentation, supporting new ecosystem features, and ensuring compatibility with constantly evolving package managers and build systems.

Many organizations depend on open-source infrastructure maintained by a small number of contributors. If you or your organization benefit from this work, please consider sponsoring me. Sponsorship helps me dedicate more time to maintaining and improving these projects and supporting the open-source ecosystem they rely on.

For organizations

If your organization relies on the tools and libraries I maintain or contribute to, consider supporting my open-source maintenance work through GitHub Sponsors.

Corporate sponsorship helps make it possible to dedicate more time to maintaining these projects, improving tooling, and supporting the broader ecosystem around them.

If your company benefits from these tools, sponsorship is a simple way to support their continued maintenance.

Tools I actively maintain

Tools that generate CycloneDX SBOMs and other transparency artifacts for various ecosystems:

Libraries I actively maintain

Core libraries that implement the CycloneDX data model and ecosystem integrations:

Additional libraries and ecosystem components:

Sponsorship supports my personal open-source maintenance efforts.

It does not constitute sponsorship of any specific organization or foundation project I contribute to.

Current sponsors 1

Private Sponsor
Past sponsors 1
@siemens

Featured work

  1. CycloneDX/cyclonedx-python

    CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

    Python 376
  2. CycloneDX/cyclonedx-php-composer

    Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects

    PHP 86
  3. CycloneDX/cyclonedx-node-npm

    Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.

    JavaScript 143
  4. CycloneDX/cyclonedx-node-yarn

    Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.

    JavaScript 26
  5. CycloneDX/cyclonedx-python-lib

    Functionality and DataModels of OWASP CycloneDX for Python

    Python 109
  6. CycloneDX/cyclonedx-javascript-library

    Functionality and DataModels of OWASP CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.

    TypeScript 24

Learn more about sponsoring developers and organizations.

Report abuse

Select a tier

$ a month

You'll receive any rewards listed in the $10 monthly tier. Additionally, a Public Sponsor achievement will be added to your profile.

$5 a month

Select

Support my open-source work and maintenance efforts.

Even small contributions help make it easier to spend time maintaining and improving the projects I work on.

Thank you!

$10 a month

Select

Help support ongoing maintenance of the open-source tooling and libraries I maintain or contribute to.

This includes bug fixes, dependency updates, compatibility work, and improvements to developer tooling.

$25 a month

Select

Support continued work on open-source infrastructure and tooling.

This helps fund time spent on:

  • maintaining libraries and developer tools
  • reviewing pull requests
  • addressing issues
  • improving documentation

$100 a month

Select

For organizations that benefit from the open-source tooling and libraries I maintain or contribute to.

Sponsorship helps make it possible to dedicate more time to maintaining and improving these projects.

If your company relies on these tools, please consider sponsoring.

$500 a month

Select

Support the broader open‑source ecosystem and the long‑term maintenance of the tools I build.

Your sponsorship directly sustains ongoing development and ensures these projects remain stable, reliable, and well‑maintained.

If your company depends on this tooling, please consider sponsoring.

Thank you for helping keep essential open‑source infrastructure strong.