Skip to content

Software Bill of Material

Introduction

Tip

A software bill of materials (SBOM) is a detailed list of all components, libraries, and dependencies included in a software application, providing transparency and aiding in security and compliance management.

roclub’s code base is continuously scanned for vulnerabilities. This is done via the automated creation of a Software Bill of Material (SBOM) which, in consequence, is compared against more than 10 different, renowned vulnerability databases. If vulnerabilities are found, they are assessed using a certified vulnerability assessment and management procedure, including provisions for safeguarding confidentiality, integrity and availability of the solution, as well as patient safety Vulnerability patching is prioritized accroding to the assessed severity.

Transparency supports security which is why we make available the SBOM of our solution. With this information at hand, you are free to independently execute vulnerability scanning of our solution.

Downloads

Below you find the SBOMs of all assets in a combined SPDX 2.3 JSON and SPDX 2.3 tag-value format.

Software Bill of Material - JSON
Software Bill of Material - tag-value