Skip to main content

sboms

Creates, updates, deletes, gets or lists a sboms resource.

Overview

Namesboms
TypeResource
Iddatadog.security.sboms

Fields

The following fields are returned by SELECT queries:

NameDatatypeDescription
idstringThe unique ID for this SBOM (it is equivalent to the asset_name or asset_name@repo_digest (Image) (example: github.com/datadog/datadog-agent)
attributesobjectThe JSON:API attributes of the SBOM.
typestringThe JSON:API type. (example: sboms)

Methods

The following methods are available for this resource:

NameAccessible byRequired ParamsOptional ParamsDescription
get_sbomselectasset_type, filter[asset_name], regionfilter[repo_digest]Get a single SBOM related to an asset by its type and name.
list_assets_sbomsselectregionpage[token], page[number], filter[asset_type], filter[asset_name], filter[package_name], filter[package_version], filter[license_name], filter[license_type]Get a list of assets SBOMs for an organization.

### Pagination

Please review the [Pagination section] for the "List Vulnerabilities" endpoint.

### Filtering

Please review the [Filtering section] for the "List Vulnerabilities" endpoint.

### Metadata

Please review the [Metadata section] for the "List Vulnerabilities" endpoint.

Parameters

Parameters can be passed in the WHERE clause of a query. Check the Methods section to see which parameters are required or optional for each operation.

NameDatatypeDescription
asset_typestringThe type of the asset for the SBOM request.
filter[asset_name]stringThe name of the asset for the SBOM request. (example: github.com/datadog/datadog-agent)
regionstring(default: datadoghq.com)
filter[asset_name]stringThe name of the asset for the SBOM request. (example: github.com/datadog/datadog-agent)
filter[asset_type]stringThe type of the assets for the SBOM request.
filter[license_name]stringThe software license name of the component that is a dependency of an asset. (example: Apache-2.0)
filter[license_type]stringThe software license type of the component that is a dependency of an asset.
filter[package_name]stringThe name of the component that is a dependency of an asset. (example: opentelemetry-api)
filter[package_version]stringThe version of the component that is a dependency of an asset. (example: 1.33.1)
filter[repo_digest]stringThe container image repo_digest for the SBOM request. When the requested asset type is 'Image', this filter is mandatory. (example: sha256:0ae7da091191787229d321e3638e39c319a97d6e20f927d465b519d699215bf7)
page[number]integer (int64)The page number to be retrieved. It should be equal to or greater than 1. (example: 1)
page[token]stringIts value must come from the links section of the response of the first request. Do not manually edit it. (example: b82cef018aab81ed1d4bb4xb35xxfc065da7efa685fbcecdbd338f3015e3afabbbfa3a911b4984_721ee28a-zecb-4e45-9960-c42065b574f4)

SELECT examples

Get a single SBOM related to an asset by its type and name.

SELECT
id,
attributes,
type
FROM datadog.security.sboms
WHERE asset_type = '{{ asset_type }}' -- required
AND filter[asset_name] = '{{ filter[asset_name] }}' -- required
AND region = '{{ region }}' -- required
AND filter[repo_digest] = '{{ filter[repo_digest] }}'
;