SBOM Reports

You can use SBOM reports to review and share your software bill of materials. There are two views:

• Detailed SBOM Report – Internal: Intended for AppSec engineers to inspect component health, license status, and vulnerability metrics.

• SBOM Report: Intended for managers and customers to verify your security posture using a detailed component list.

You can filter and export the report info.

Detailed SBOM Report - Internal

Detailed SBOM Report – Internal shows the health and risk of every component in your software bill of materials.

It displays hygiene metrics, license approval breakdowns, vulnerability severity summaries, and a detailed list of all components.

You can use filters, export data, or start a scan to focus on the items you need.

You can view the following information:

SBOM Report

SBOM Report provides an inventory of your software components in your software bill of materials, mainly third party and open sources.

You can share this view with managers and customers to demonstrate license compliance by showing whether each component meets its legal obligations..

The SBOM items table lists all SBOM components with details such as library name, license status, source, application, and so on. You can click above the SBOM Items table and select which columns to present in the table.

To focus on the items you need, you can use filters.

Filtering report info

The following filter options are available in both reports:

Exporting info

The following export options are available in both reports:

Note: By default, the exported report includes all columns from the SBOM Items table. If you hide any columns in your custom view, the export reflects those changes.