Software Bill of Materials (SBOM)

SBOM

SBOM or Software Bill of Materials lists all software components, dependencies, and metadata in an application or service. It is an inventory of the software product's building blocks. It helps organizations understand, manage, and secure their applications.

To View SBOM

The SBOM for the applications is available to view in the Artifact Security page.

• Navigate to Artifact Security and click on the required artifacts page.

• Click View SBOM.

• The SBOM page is displayed.

The page displays the different components and their details as follows:

• Component - Displays the component name.

• Version - Displays the version of the displayed component.

• Package URL - Displays the packge URL of the component.

• License - Dsiplays all the available licenses.

• Vulnerabilities - Displays the count of the vulnerabilities for the given component.

• EOL Risk - Displays the EOL status of the component.

• Dependency - Displays the dependency of the components.

• Actions - You can add or remove licenses by clicking the Edit License button.

The SBOM page can be downloaded in JSON format by clicking the Download button present on the top right corner.