Software Bill of Material Tool

SBOM tools are critical in hardening cybersecurity, which is why DeployHub is laser-focused on leveraging SBOM data. DeployHub is a unified governance catalog for tracking microservice SBOM information. DeployHub’s superpower is its ability to aggregate this critical data up to all ‘logical application’ versions, even in a decoupled microservices architecture. Using DeployHub’s SBOM tool, you automate the collection of SBOM data adding a high-level of insight and audit control to the DevOps pipeline.

DeployHub acts upon and consolidates your DevOps intelligence. It continuously creates a central ‘evidence store’ showing how low-level component changes impacts application level SBOMs and CVEs reports over time. Without an SBOM tool like DeployHub, generating an application-level SBOM in a cloud-native environment is nearly impossible without the toil of manual intervention using spreadsheets that become quickly outdated as new microservices enter the supply chain all day long. 

DeployHub Centralizes all SBOM Data

In cloud-native microservices architecture, your SBOMs are generated and managed at the microservice level. Microservices are pushed across your continuous delivery pipeline independently and frequently. Every time a new microservice is updated, all of the consuming ‘logical applications’ have a new version with a new SBOM and CVE report. Developers, DevOps Engineers, and Security teams struggle to keep up with the changes and cannot easily provide SBOM and CVE reporting for all impacted applications. The result is the absence of governance or a historical audit trail of the changes pushed to end users. DeployHub solves this problem by centralizing the ‘evidence store’ data and continuously aggregates the information up to the critical level, the ‘logical application.’ DeployHub provides the insights needed to harden the security of the software your end users consume. 

Aggregated Application SBOM and CVE

Application-Level SBOMs

For each update that is pushed to an end-user, DeployHub provides a report that shows the aggregated SBOM data, with all CVEs without any manual toil.

Versioning SBOMs

Unique to DeployHub is its method of versioning microservice updates. DeployHub automatically creates new versions of the ‘logical’ application when the underlying microservices change.

Component Versioning

DeployHub and Continuous Delivery

DeployHub and Continuous Delivery

CI/CD Pipeline Integration

DeployHub integrates into the Continuous Delivery pipeline to continually monitor microservice updates. DeployHub’s integration creates an ‘evidence store’ that is continuously updated, keeping your DevOps intelligence updated and accurate. DevOps intelligence can be used to define policies such as stopping a deployment if an underlying component has known vulnerabilities. 

SBOM Tool

DeployHub is based on the Ortelius open-source project incubating at the Continuous Delivery Foundation.

Signup here

 SBOM Tool Sign-up

Signup and Get Started

Get started building Centralizing all SBOM Data with DeployHub. Microservices don’t have to be complex. Start simplifying them today.

If you want to execute deployments from the SaaS version, you will need to secure your environment with our Reverse Proxy.

Got questions?  Join our Discord channel and start a discussion. Open an issue on GitHub.