VeriBOM User Guide
  • Getting Started
    • Introduction
    • Signup up for VeriBOM as an Organization
    • Login to VeriBOM as an Organization
  • SBOM Concepts
  • Product Management
    • Adding Product
    • Editing Product
    • Deletion of Product
    • Additional Notes
  • Connection Management
    • Adding Connection as Publisher
    • Adding Connection as Auditor
    • Editing Connection
    • Deletion of Connection
  • Project and SBOM Management
    • Adding Project
    • Scan Sources Integration
      • Source Code Upload
      • SCM Integration - GitHub
      • Container Image Scanning
      • CI/CD Integration - Jenkins
      • Container Orchestration Platforms
    • Initiating SBOM Scans
    • Publishing SBOMs
    • Editing Project
    • Deletion of Project
  • User Management
    • Adding User
    • Editing User
    • Deletion of User
  • Roles and Permissions Management
    • Predefined Roles and Permission
    • Custom Roles and Permission
      • Permissions Hierarchy
  • Organization Types
    • Sending Invitation Request to Organization From Partner Portal
    • Sending Invitation Request to Partner From Partner Portal
    • Free Publisher
    • Publisher
    • Auditor
  • Appendices
    • Contact Information
    • Glossary
    • Troubleshooting
    • Frequently Asked Questions (FAQ)
    • VeriBOM Video Guides
    • Best Practices
    • References
    • Supported Languages and Manifests
Powered by GitBook
On this page
  1. Project and SBOM Management
  2. Scan Sources Integration

SCM Integration - GitHub

Overview: Integrating your Source Code Management (SCM) system, such as GitHub, with VeriBOM streamlines the SBOM generation process by automatically fetching code repositories and their associated components.

Steps for SCM Integration:

  1. Access VeriBOM: Start by logging in to VeriBOM using your authorized credentials.

  2. Locate the SCM integration settings option in the Source Type section.

  3. Connect your SCM account (GitHub) to the VeriBOM.

  4. Choose the repositories you want to analyze.

  5. The tool will periodically fetch code changes, ensuring your SBOMs stay up-to-date.

PreviousSource Code UploadNextContainer Image Scanning

Last updated 1 year ago