이 콘텐츠는 선택한 언어로 제공되지 않습니다.
Chapter 2. New features and enhancements
A list of all major enhancements, and new features introduced in this release of Red Hat Trusted Profile Analyzer (RHTPA).
The features and enhancements added by this release are:
Validating the serialNumber
property in CycloneDX SBOM files
With this release, we added a process to validate the existence of the serialNumber
property in a CycloneDX-formatted Software Bill of Materials (SBOM) file when uploading the SBOM to RHTPA. Uploading a CycloneDX SBOM file with no serialNumber
gives an error message.
CVE impact to an SBOM
You can see Common Vulnerabilities and Exposures (CVE) data from the Open Source Vulnerability (OSV) database when scanning a software bill of materials (SBOM). By default, scanning an SBOM gives you all the publicly collected vulnerabilities affecting the packages that make up the SBOM.