Guides

Enriching SBOMs

Suggest Edits

SBOM quality can vary greatly across generators resulting in SBOMs that lack important metadata and/or additional information. Manifest also offers automatic SBOM enrichment which pulls data from various sources to add this missing information into your SBOM during upload.

SBOMs will be enriched while they are being uploaded. When uploading an SBOM, you'll be prompted with a pop-up with additional upload settings. Click "Enrich SBOMs" to add enrichment for that SBOM.


Enabling Enrichment by Default

To enrich all SBOMs by default,

  1. Go to Settings, then select the Upload Settings tab.
  2. Set "Enrich SBOMs by default" to On.

Additional Information

  • All SBOMs that are enriched will have a note on the Asset details page on the About tab.
  • Please note that after an SBOM is enriched, a new copy of this enriched SBOM will be saved in Manifest alongside the original SBOM. To download the original SBOM without enrichment go to the Asset, then click the About tab. At the bottom of the page on the left, click Download Original SBOM.

Updated 3 months ago