SBOM Management

SBOM Onboarding

Onboard your SBOMs in a centralized, secure repository. Comply with the Presidential Executive Order of May 2021 on securing your software supply chain. Capture your vendor’s SBOM self-attestation forms, as well as ingest, store, and manage your SBOMs through a single dashboard view.

SBOM Enrichment

Identify key risk and vulnerabilities within your vendor’s SBOMs, as defined by organizations such as Cybersecurity and Infrastructure Security Agency (CISA). Enrich all your SBOMs with open source intelligence in areas such as contributor visibility, community health and the code itself.

Know the Health and Risk of Your SBOMs

Enrich, manage, and monitor your SBOMs (internal and 3rd party vendors) in one secure, centralized dashboard to gain visibility into the health risk of your software ecosystem.

Try For Free

SBOM Compliance

Determine if your vendor’s SBOMs are compliant with key government minimum requirements from organizations such as the U.S. Federal Government’s National Telecommunication and Information Administration (NTIA). Assess if SBOM is acceptable with three key categories: data fields, data formats (e.g., SPDX, CycloneDX, SWID) and practices/processes.

SBOM Monitoring

Through Project Hub, continuously monitor and manage all your SBOMs, receive risk alerts on known and new vulnerabilities contained within these SBOMs, receive key remediation recommendations, while assessing your SBOM performance over time through SettleTop’s SetIntel Platform.