SBOM
Generates a comprehensive SBOM with details on OS and App artifacts.
Dependencies
Analyzes all dependencies to ensure all supporting tools are up to date and secure.
License Types
Analyzes the dependencies, and license types to avoid issues such as copyleft license types.
Secrets
Scans secrets in your artifacts that can be exploited like tokens, passwords, etc...
Signed Attestations
Analyzes signed attestations to verify code progent and authenticity.
SBOM Formats
Output your SBOMs in CycloneDX (JSON/XML), text, or SPDX (JSON/XML)