0
6.3.1
Australia, Zurich, Yokohama, Xanadu
Standalone Application
SBOM Core helps organizations maintain the searchable inventory of all the open-source components used in their environment.
- Upload SBOM files with an API or manually. This application supports XML and JSON formats for CycloneDX. JSON format is supported for SPDX.
- Search the inventory of files to identify your potential risk of exposure with a specific component.
New:
Automatic timeout handling for BOM records
Implemented automatic timeout handling for BOM records that remain stuck in the processing state for more than an hour. The system now tracks processing metrics by populating processing_started timestamp when BOM processing begins and calculating processing_duration when processing completes, times out, encounters errors, or is skipped, providing better visibility into BOM processing performance and reliability.
Fixed:
An issue where BOM processing failures updated the queue record status but left the error message field empty or generic. Error reasons are now properly captured on BOM queue records, providing you with immediate visibility into failure causes without requiring you to analyze error logs.
- Required roles: sn_sbom_core.sbom_ingest, sn_sbom_core.admin.
- Dependencies: At a minumum, the Data Model for SBOM application must also be installed to upload SBOMs.