Branch: refs/heads/2.0.0
Home:
https://github.com/tribe29/checkmk
Commit: 2d8bf60ca837993c522f1c77ea61a3de428742fd
https://github.com/tribe29/checkmk/commit/2d8bf60ca837993c522f1c77ea61a3de4…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2021-12-22 (Wed, 22 Dec 2021)
Changed paths:
A .werks/13324
M buildscripts/scripts/build-cmk-version.jenkins
M omd/Makefile
Log Message:
-----------
13324 SEC Shipping software bill of materials with Checkmk
A software bill of materials can be used to analyze the components that are
part of Checkmk. An accurate inventory of all components enables organizations
to identify risk, allows for greater transparency, and enables rapid impact
analysis.
Checkmk packages are now shipping a BOM in OWASP CycloneDX format. As of
Checkmk 2.1.0 and 2.0.0p18 it can be found in each site at the path
<tt>share/doc/bill-of-materials.json</tt>.
We also publish the BOM to internal dependency track instance.
Change-Id: I6dc73b7accc5eaf237fa9c69828bb7bf11092563