2 docs tagged with "sbom"

A practical guide to CVE scanning, SBOM generation, base image recommendations, and GitHub Actions integration using Docker Scout — Docker's official security tool.

Understanding SBOM (Software Bill of Materials) and its relationship with security, and practical approaches to SCA, container scanning, and vulnerability assessment using .NET, Docker, Node.js, and Python examples.