MetaDefender Core v5.7.0 Release: Software Bill of Materials Technology

Oct 10, 2023 by Stella Nguyen, Senior Product Marketing Manager

Share this Post

Product Overview

OPSWAT MetaDefender Core safeguards organizations against file-borne threats, strengthening cybersecurity measures. We introduce Software Bill of Materials (SBOM) technology. With the inclusion of SBOM technology, MetaDefender Core now offers vital insights necessary to ensure a secure software supply chain.

This enhancement builds upon MetaDefender Core's robust foundation, leveraging OPSWAT's advanced security technologies, from Deep Content Disarm and Reconstruction (Deep CDR) to Multiscanning, File-Based Vulnerability Assessment, Data Loss Prevention (Proactive DLP), and Threat Intelligence. These tools provide comprehensive protection for your critical infrastructure. They effectively shield against ever-evolving file-based threats while, in tandem with SBOM, enhancing visibility and control over your software supply chain.

New Technology Highlights

What is SBOM?

Software Bill of Materials or SBOM is key to software supply chain security and risk management. It provides a complete list of all components, libraries, and dependencies that make up a piece of software. By illuminating the software supply chain, SBOMs are crucial for managing security risks and building secure applications.

How OPSWAT SBOM helps with vulnerability identification

OPSWAT SBOM provides an inventory of all open-source libraries and components used within an application. This list gives visibility into all vulnerabilities by correlating the software dependencies to databases of known vulnerabilities. From MetaDefender Core, users can now add SBOM to their workflow.

Sample Source Code vulnerabilities

Sample Container vulnerabilities

MetaDefender quickly scans existing SBOMs to identify vulnerable software components. With OPSWAT SBOM, organizations can identify and fix vulnerabilities in applications.

OPSWAT SBOM automatically maps the component inventory from an SBOM against the National Vulnerability Database (NVD), and GitHub Advisory Database, and flags vulnerable components with the corresponding severity level.

OPSWAT SBOM supports over 10 programming languages, including Java, JavaScript, Go, PHP, and Python, enabling comprehensive vulnerability detection across diverse software development ecosystems.

Key Benefits of OPSWAT SBOM Technology

Integrate OPSWAT SBOM seamlessly into your Software Development Lifecycle (SDLC) for insights into software components. Software development teams can now detect vulnerabilities, uncover threats, and make informed decisions about updates and patches—all without slowing down their development velocity.

OPSWAT SBOM supports:

Vulnerability identification – Large databases of regularly updated vulnerabilities reduce risks of using untrusted third-party code.
Prioritizing fixes – Vulnerability severity scores from “low” to “critical” help developers prioritize fixes.
Visibility into licenses – SBOM lists the licenses associated with your software components, enabling you to evaluate whether the licenses you are using are compliant or address any potential license risks.
Software compliance – Many compliance standards either recommend or require SBOMs. SBOMs demonstrate due diligence has been done.
Reduce attack surface – Organizations can prune unnecessary libraries and dependencies that increase risk.