Skip to content

Software Bill of Materials (SBOM)

Every shipped Pulse build includes a Software Bill of Materials (SBOM): a machine-readable inventory of the third-party components bundled in the product.

Pulse publishes its SBOM in the CycloneDX JSON format. It is a single merged document covering all shipped components:

  • The Haskell backend (resolved from the pinned dependency set)
  • The Go services — the OPC UA collector, the S7 collector, and the appliance CLI
  • The web and mobile front-ends (npm dependencies)

Download

Download the Pulse SBOM (CycloneDX JSON)

You can also open it in your browser.

Using the SBOM

The CycloneDX file can be ingested by common supply-chain and vulnerability tooling — for example Dependency-Track, Grype, or Trivy — to audit licenses and scan the components Pulse ships for known vulnerabilities.