Branch: refs/heads/master
Home:
https://github.com/tribe29/checkmk
Commit: 3fb76d7fa6f100b9f72323787731444fd6d5cfe7
https://github.com/tribe29/checkmk/commit/3fb76d7fa6f100b9f72323787731444fd…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2021-12-22 (Wed, 22 Dec 2021)
Changed paths:
A .werks/13324
M buildscripts/scripts/build-cmk-version.jenkins
M omd/Makefile
Log Message:
-----------
13324 SEC Shipping software bill of materials with Checkmk
A software bill of materials can be used to analyze the components that are
part of Checkmk. An accurate inventory of all components enables organizations
to identify risk, allows for greater transparency, and enables rapid impact
analysis.
Checkmk packages are now shipping a BOM in OWASP CycloneDX format. As of
Checkmk 2.1.0 and 2.0.0p18 it can be found in each site at the path
<tt>share/doc/bill-of-materials.json</tt>.
We also publish the BOM to internal dependency track instance.
Change-Id: I6dc73b7accc5eaf237fa9c69828bb7bf11092563