Tag News

IT-Säkerhetspodden SBOM

In Swedish: Höstens första podd från SIG Security är här! Som vanligt bjuds det på ett aktuellt ämne från en av föreläsningarna under en FOKUS-kväll. Det är Ronny Engelin som beskriver SBOM och hur det påverkar leverantörer som arbetar i…

Generating VEX.

SBOM Central has now added the capability to generate VEX reports enhancing its functionality. VEX stands for Vulnerability Exploitability eXchange and is a standardized document that provides information about the exploitability of known vulnerabilities in software components. Developed as a…

How to prioritize vulnerabilities.

Security is constantly moving, and a secure system today might be vulnerable tomorrow—even without any changes or updates.  Vulnerabilities can emerge and be identified at any point during the lifespan of an open-source component. When a vulnerability in such a…

Creating artifacts and SBOMs manually.

We have now released web tools to manually create Artifacts and SBOMs in SBOM Central. Artifact tool. With the artifact tool, you can craft artifacts manually for storage in your SBOM Central database. These artifacts are managed similarly to those…

Identifying patched software.

SBOM Central is now capable of identifying security patches for components within Linux distributions. It possesses the capability to automatically eliminate false positives related to specific vulnerabilities. Vulnerabilities that have been made public in open-source components might have already been…