Safeguard Documentation Center
Portal

SBOM Repository

Centralized storage and organization for all your SBOMs

SBOM Repository

The SBOM Repository provides centralized storage, organization, and management for all your Software Bills of Materials.

Organization Structure

Products

Group SBOMs by software product:

  1. Navigate to Products
  2. Click Create Product
  3. Enter product details (name, SKU, description)
  4. Associate SBOMs with the product

Versions

Track SBOM versions:

  • Automatic versioning from source (git tags)
  • Manual version assignment
  • Version comparison and diff
  • Release lifecycle tracking

Tags

Categorize with custom tags:

  • Environment (production, staging, development)
  • Team ownership
  • Compliance requirements
  • Custom categories

Importing SBOMs

From Enterprise ESCM

SBOMs generated in Enterprise ESCM can sync automatically:

  1. Go to SettingsIntegrations
  2. Enable Enterprise ESCM Sync
  3. Select projects to sync
  4. Configure sync frequency

Manual Upload

Upload existing SBOMs:

  1. Click Import SBOM
  2. Select format (SPDX, CycloneDX, etc.)
  3. Upload file or paste content
  4. Assign to product and version
  5. Click Import

API Import

curl -X POST "https://api.safeguard.sh/v1/portal/sboms" \
  -H "Authorization: Bearer $API_KEY" \
  -H "Content-Type: application/json" \
  -d @sbom.json

SBOM Details

Each SBOM includes:

FieldDescription
ProductAssociated product
VersionVersion identifier
FormatOriginal format
ComponentsTotal component count
CreatedImport/generation date
SourceWhere it came from
ComplianceEO 14028 status

Search & Filter

Find SBOMs quickly:

  • Full-text search across metadata
  • Filter by product, version, date
  • Filter by compliance status
  • Filter by component contents

Version Comparison

Compare two SBOM versions:

  1. Select two versions of the same product
  2. Click Compare
  3. View:
    • Added components
    • Removed components
    • Version changes
    • New vulnerabilities
    • Resolved vulnerabilities

Portal

Centralized SBOM management with secure third-party sharing and compliance verification

Sharing

Securely share SBOMs with customers, partners, and auditors

On this page

SBOM RepositoryOrganization StructureProductsVersionsTagsImporting SBOMsFrom Enterprise ESCMManual UploadAPI ImportSBOM DetailsSearch & FilterVersion Comparison