Current public release: latest public release
Third-party components
Release-specific dependency information is maintained with the corresponding security package for the exact version under review.
KiteScribe includes third-party and open-source components within the product build. Release-specific notice information, dependency detail, and related review material are maintained with the corresponding security package for the exact version under review.
Release-specific review
Third-party component information is tied to the exact release so the review team is looking at the same dependency set as the shipped package.
Security package linkage
SBOM and dependency analysis outputs are part of the public security package generated for each release.