Lineaje Learning Center
  • About Lineaje
  • Lineaje Product Offering
  • Getting started
    • Create an account
      • Configure Azure AD for sso
      • Configure Okta for sso
    • Onboarding workflow
  • SBOM360, OSM
    • Generate an SBOM
      • Source Code Management (SCM) As Source
        • Public Code Repositories
        • Private Code Repositories
          • Configure GitHub credentials
          • Configure Bitbucket credentials
          • Configure Gitlab credentials
          • Configure Git credentials
          • Configure Azure Repo
        • Frequently Asked Questions
      • Container Image As Source
        • Public Container Image
        • Private Container Image
          • Configure AWS Elastic Container Registry
          • Configure Google Container Registry
          • Configure Docker Hub
          • Configure Generic OCI Registry
          • Configure Azure Container Registry
        • Frequently Asked Questions
      • Existing SBOM As Source
        • EO 14028 checks
      • Manifest file As Source
      • Android Package Kit (APK)
      • Using Lineaje CLI
    • Explore Your SBOM
      • Info
      • Attestation
      • IRL
      • Dependencies
      • Provenance
      • Vulnerabilities
      • Mitigations
      • Security Posture
      • Code Quality
      • Suppliers & Licenses
      • Findings
    • Manage Your SBOM
    • Dashboard
    • Search
    • Policies and Gates
    • Organization and User Management
      • Organization example
    • Lineaje AI
    • AI Plan and AI Remediate
      • JIRA Integration
  • SBOM360 Hub
    • My Products
    • My SBOMS
    • Find & Review SBOMs
    • Manage Your Repository
    • Request and Share SBOMS
    • Settings
    • User Roles
  • Lineaje CLI
    • System Configuration
    • Toolset Configuration
    • CLI Installation
    • CLI Usage
    • Troubleshooting CLI issues
    • Support matrix
  • Integration with CICD pipeline
    • Pre-Requisites
    • Generate Project from source code
      • Project creation using Lineaje cloud
  • Abbreviations and Descriptions
  • Release Notes
    • Unified Scanner for AWS
Powered by GitBook
On this page
  1. SBOM360, OSM
  2. Explore Your SBOM

Suppliers & Licenses

PreviousCode QualityNextFindings

Last updated 1 year ago

SBOM360 analyses the software suppliers, licenses, and presents them all within your SBOM project at both the SBOM and component level. To ensure supply chain security, it is important for you to carefully vet your suppliers and conduct thorough security assessments of the software they provide. Licensing information can helps ensure that the software is compliant with open-source, private, and third-party licensing requirements.

Understanding Suppliers & Licenses

Total Suppliers: List all suppliers in the current SBOM. This gives the metadata for the supplier like Name, Organization, Website, number of components by this supplier in this SBOM, number of components by this supplier across all your SBOMs in your organization.

Total Project Licenses: List unique license category and license name. This gives the metadata like license category, license name, license version, license URL.

Total unique Authors: List the authors responsible for code commits. This gives the metadata like contributor name, email, number of commits.

Total Supplier Components: All components in the current project that are contributed by the suppliers.