Software Bill of Materials

sbom

The Software Bill of Materials object describes characteristics of a generated SBOM.

Attributes

CaptionNameTypeDescription
Created Timecreated_timeTimestamp

The time when the SBOM was created.

Software PackagepackageSoftware Package[]

The device software that is being discovered by an inventory process.

ProductproductProduct[]

The product that generated the SBOM e.g. cdxgen or Syft.

Raw Dataraw_dataJSON

Group:context
The event data as received from the event source.

Record IDrecord_idString

Group:primary
Unique identifier for the object

Software Componentssoftware_componentsSoftware Component[]

The list of software components used in the software package.

UnmappedunmappedUnmapped[]

Data from the source that was not mapped into the schema.

Relationships

Software Bill of Materials shown in context

Inbound Relationships

These objects and events reference Software Bill of Materials in their attributes:

Outbound Relationships

Software Bill of Materials references the following objects and events in its attributes:

This page describes ocsf-1.4.0