Support `SbomReport`
MPV opened this issue · comments
Thoughts/ideas on supporting SbomReport
?
I.e:
apiVersion: aquasecurity.github.io/v1alpha1
kind: SbomReport
An instance of the SbomReport represents the latest sbom (software bill of metarials) found in a container image of a given Kubernetes workload. It consists of a list of OS package and application bil of metarial with a summary of components and dependencies.
See:
On second thought, maybe it's not applicable as a "policy report" object, as an SbomReport
just contains information about the bill of materials for a particular image / Kubernetes workload.
Unless you disagree, I suppose we can close this one.
For anyone else coming here, here's an example of what I'm rather seeking instead: