Get Vulnerability Updates

Data for SBOM Document ID: 279bf08f-d6bb-4df9-b40d-a21e16031836

OWASP depscan Vulnerability Scan Trivy Vulnerability Scan Grype Vulnerability Scan sbomqs SBOM Score
Download SBOM (original upload) Download Signed SBOM (original upload) Download SBOM (recent vulnerability scan)
Share by Email ? Get Badge URL ? Get Badge markdown code ?
Key Value
Timestamp 2023-10-20T08:05:02+00:00
Signature unsigned
Tool Vendor: aquasecurity
Name: trivy
Version: 0.46.0
Component bom-ref: pkg:oci/jenkins@sha256%3Ab728c15f3d9aa442b9ab5d6d6e75f2e5663e4a14f22dfcdac35f83245e76b343?arch=amd64&repository_url=index.docker.io%2Fjenkins%2Fjenkins
Type: container
Name: jenkins/jenkins
purl: pkg:oci/jenkins@sha256%3Ab728c15f3d9aa442b9ab5d6d6e75f2e5663e4a14f22dfcdac35f83245e76b343?arch=amd64&repository_url=index.docker.io%2Fjenkins%2Fjenkins
Properties:
  • aquasecurity:trivy:DiffID: sha256:2fa37f2ee66efbd308b9b91bce81c262f5e6ab6c3bf8056632afc60cc602785c,sha256:93d306fbcd08548145302670f69528fb86689837b2a28d3e713ce0000d791d09,sha256:48fc9ba1ebc77bdf80065c55131614512d96c9bcb78a9b5d483ceb9630df5def,sha256:29fdd158160f3782de76b98da1b8bf881db2107f012bcd75d3dba2a2cc209156,sha256:e2fc6bd9c7e538a9cd59af750c1e055a020bd8f3924a1de22f22704429b5d81a,sha256:d068ee3e0a4a0b8c62de5cbb260424c75521164870a0130df91ac7aec503a055,sha256:114e8faf059d073fc39a37d54e931c8eaea48ff688341cfabab5eab7d6e3bbde,sha256:10f9fead5e1bb5e47dd51fb3018783ef2e36428a95079fc43e4208a583570e05,sha256:724f0c40f1e714cf88316497a6fd0787f66b83c12f5aa64b87953ad37cfe2c13,sha256:27c4aaafe3d6c081b3adaf25ed0e8341a9c19c041b481374802c0324c1f2604c,sha256:05fb8a595b17421bb8374cae3e107001faf600830f62e2a5bcab21670586669e,sha256:68126eca054fe37c53870f4efbc780ae8a18967fb444cc190662d16ad1496264
  • aquasecurity:trivy:ImageID: sha256:892693e4fe3166280952abf6981fa9fb5b451c3be9ce3c689a7f708a6cf87546
  • aquasecurity:trivy:RepoDigest: jenkins/jenkins@sha256:b728c15f3d9aa442b9ab5d6d6e75f2e5663e4a14f22dfcdac35f83245e76b343
  • aquasecurity:trivy:RepoTag: jenkins/jenkins:latest
  • aquasecurity:trivy:SchemaVersion: 2
Total Components

172

SBOM Quality Score

6.30 / 10

Vulnerability Severity Distribution

EPSS Exploitability Score (lower is better)

Total Vulnerabilities

58

Critical

2

High

12

Medium

40

Low

4

None

0

Structural

Average: 7.5

# Description Score Score Progress
1 provided sbom is in a supported sbom format of spdx,cyclonedx 10.0
2 provided sbom should be in supported spec version for spec:1.5 and versions: 1.0,1.1,1.2,1.3,1.4 0.0
3 provided sbom should be in supported file format for spec: json and version: json,xml 10.0
4 provided sbom is parsable 10.0

NTIA-minimum-elements

Average: 9.8

# Description Score Score Progress
1 150/173 have supplier names 8.7
2 173/173 have names 10.0
3 172/173 have versions 9.9
4 173/173 have unique ID's 10.0
5 doc has 537 relationships 10.0
6 doc has 1 authors 10.0
7 doc has creation timestamp 2023-10-20T08:05:02+00:00 10.0

Semantic

Average: 3.3

# Description Score Score Progress
1 Doc Fields:true Pkg Fields:true 10.0
2 0/173 have licenses 0.0
3 0/173 have checksums 0.0

Quality

Average: 4.3

# Description Score Score Progress
1 0/173 components with valid license 0.0
2 173/173 components have primary purpose specified 10.0
3 no licenses found 0.0
4 no licenses found 0.0
5 172/173 components have any lookup id 9.9
6 0/173 components have multiple lookup id 0.0
7 1/1 tools have creator and version 10.0

Sharing

Average: 0.0

# Description Score Score Progress
1 doc has a sharable license free 0 :: of 0 0.0