Software Bill of Materials (SBOM)
Every shipped Pulse build includes a Software Bill of Materials (SBOM): a machine-readable inventory of the third-party components bundled in the product.
Pulse publishes its SBOM in the CycloneDX JSON format. It is a single merged document covering all shipped components:
- The Haskell backend (resolved from the pinned dependency set)
- The Go services — the OPC UA collector, the S7 collector, and the appliance CLI
- The web and mobile front-ends (npm dependencies)
Download
Download the Pulse SBOM (CycloneDX JSON)
You can also open it in your browser.
Using the SBOM
The CycloneDX file can be ingested by common supply-chain and vulnerability tooling — for example Dependency-Track, Grype, or Trivy — to audit licenses and scan the components Pulse ships for known vulnerabilities.