Downloading an OpenText Core SCA (Debricked) software bill of materials

The software bill of materials (SBOM) is a list of the software dependencies included in a software application. In addition to direct dependencies, it also includes dependencies used by those dependencies, also known as indirect or transitive dependencies. It describes the supply chain relationships used when building the software. The SBOM is in the CycloneDX format.

You can download the SBOM as a JSON file to assess the open source components in use. Using the information provided in the SBOM, you can make decisions on whether or not the versions you are using are safe for your project or whether you need to change to a different version or open source package or a different open source package.

To download an SBOM:

  1. On the header, select Applications.

  2. Select the application version for which open source results have been uploaded.

  3. Click OPEN SOURCE.

  4. Expand the Debricked grouping.

    issues grouped by Debricked results
  5. Click Download SBOM.

  6. Open the downloaded JSON file in a text editor to view the SBOM.