0
6.3.1
Zurich, Yokohama, Xanadu
SBOM Response provides you with visibility into the risks associated with using open-source components in your organization. You can respond to identified risks with the workflow and automation capabilities of the NOW Platform.
- Identify and assess the risks associated with using open-source components.
- Define application vulnerable item (AVIT) creation rules based on risks to trigger the remediation workflows.
Fixed
- Fixed an issue in the OSVAPIIntegration script where the integration failed with an error. OSV API that lacked the expected results key. The script now safely checks for the existence of results before accessing it, ensuring the integration handles empty or malformed responses gracefully without breaking.
- Fixed a display issue in the component widget where the count was incorrectly showing as 0 in the summary view. Upon investigation, it was determined that while the drill-down view displayed the correct component count, the main widget consistently showed zero. This has been resolved, and the component widget now accurately reflects the true component count at all levels of the interface.
Required role: sn_sbom_resp.sbom_analyst
Dependencies:
- The SBOM Core and Data Model for SBOM applications must be installed to parse and ingest the data from uploaded SBOMs in your instance.