← Back to glossary

📦

SBOM

Security

Security Audit Open Source Supply‑chain Attack

A list of the software components inside an app.

Definition

An SBOM is like an ingredient list for software. It shows which libraries and components are included.

In plain English A list of the software components inside an app.

Why this matters

Why it matters: If a component has a vulnerability, an SBOM helps you find affected products faster.

Example

Example: A company checks its SBOM to see if it uses a vulnerable open-source library.