0
6.5.3
Australia, Zurich, Yokohama, Xanadu
Standalone Application
SBOM Response provides you with visibility into the risks associated with using open-source components in your organization. You can respond to identified risks with the workflow and automation capabilities of the NOW Platform.
- Identify and assess the risks associated with using open-source components.
- Define application vulnerable item (AVIT) creation rules based on risks to trigger the remediation workflows.
The following enhancements and changes support internal security directives:
- Enhancements to the SBOM Response plugin to align with ServiceNow Platform Security guidance.
- Read-only dictionary fields for SBOM Response tables.
- Fix script renamed to a per-plugin name to prevent update set conflicts with other SBOM plugins.
Fixed:
- Vendor SBOM upload reliability — Resolved an error that occurred when uploading vendor-supplied SBOMs.
Required role: sn_sbom_resp.sbom_analyst
Dependencies:
- The SBOM Core and Data Model for SBOM applications must be installed to parse and ingest the data from uploaded SBOMs in your instance.