Commit a1cde20c authored by Santeri Toikka's avatar Santeri Toikka
Browse files

Revised SBOM verdict

Closes #135 HAS74
parent d9037e97
Loading
Loading
Loading
Loading
+5 −4
Original line number Diff line number Diff line
@@ -939,7 +939,7 @@ Verify that:

#### 6.2.5.1 REQ-SBOM-1

**Objective:** Clarify machine readable SBOM listings that are essential for vulnerability management.<br/>
**Objective:** Clarify machine readable SBOM listings that are essential for the vulnerability management.<br/>
**Preparation:** None<br/>
**Activities:**

@@ -959,7 +959,7 @@ Verify that:

#### 6.2.5.2 REQ-SBOM-2

**Objective:** The deliverable erodes over time. The SBOM is one of the sources for the motivation to update.<br/>
**Objective:** Prevent the software deliverables to erode over time.<br/>
**Preparation:** None<br/>
**Activities:**

@@ -969,8 +969,9 @@ Verify that:

**Verdict:**

1. Pass if instructions are operatively consistent.
2. Fail otherwise.
1. Pass if instructions are operatively consistent
2. and the update frequency has a possibility to match the expected changes in the deployment complexity.
3. Fail otherwise.

**Supporting Evidence:**