The Software Bill of Materials (SBOM) helps provide numerous insights to an organization. Simply put, the SBOM is a listing of all software dependencies that are included in a software application. It includes not only the direct dependencies used but also the dependencies used by those dependencies, also known as indirect or transitive dependencies. As such, it describes the supply chain relationships used when building the software.
SBOMs describe the supply chain relationships used when building the software.