SBOM 2.0: Runtime Visibility, License Intelligence, Unmatched Container Security.

May 13, 2025

Yossi Ben Naim
VP of Product Management

We’re excited to announce a major enhancement to the ARMO platform: Full Software Bill of Materials (SBOM) with Runtime Visibility and Open Source License Insights.

In today’s threat landscape, it’s not enough to know what went into your containerized applications. You need to know what’s actually running, how it’s behaving, and whether it introduces compliance or legal risks. ARMO’s new SBOM capability delivers just that.

What’s New?

ARMO now gives you a complete SBOM for every workload – including all components, regardless of vulnerability status – along with:

Runtime visibility: See which components are actually loaded in memory during runtime execution.
License insights: Track the open-source licenses associated with each component.

This powerful combination helps you go beyond basic CVE scanning and gain true control over your software supply chain.

Why it matters

Most tools only tell you what’s vulnerable. But what about components that aren’t vulnerable yet? What about the packages you’re not even using? And what about open-source licenses that could put you at legal risk?

ARMO’s enhanced SBOM answers all of these questions:

✅ 1. Complete Transparency for Better Risk Management

No more blind spots: See the full stack, not just the red flags.
Stay ahead of tomorrow’s new vulnerabilities by knowing what’s there already today.

📦 2. Smarter Attack Surface Management

Distinguish theoretical from real risk by identifying what’s reachable and exploitable and loaded into memory.
Prioritize remediation based on actual runtime usage, not static assumptions.

🧠 3. Data-Driven Decisions for Developers and Security Teams

Remove unused software components to harden images and reduce bloat.
Focus runtime protections where they’re actually needed.
Understand license exposure before it becomes a legal issue.

🛡️ 4. Compliance and Audit Readiness, Built In

Meet modern standards like NIST, SLSA, and ISO 27001 that require full SBOM coverage.
Demonstrate open-source license compliance and due diligence during security assessments.

⚙️ 5. CI/CD and Runtime Synergy

Shift security left by using SBOM data to block risky or unnecessary components at the pipeline level.
Maintain visibility throughout the lifecycle—from build to runtime.

A Unified Lens for DevSecOps

This isn’t just another SBOM feature, it’s a foundational capability for modern DevSecOps.

By combining what was built (SBOM), what’s running (runtime status), and what it means for compliance (licenses), ARMO gives teams a unified, actionable view of their security posture.

Whether you’re managing Kubernetes clusters, responding to incidents, or prepping for a compliance audit, this is the data you’ve been missing.

How to Use It

Getting started is simple:

Log into ARMO Platform.
Navigate to the “Vulnerabilities → SBOM” section.
You get a view:
- A complete list of all components.
- Their runtime status (loaded or not).
- Their open-source license types.
Use the data to:
- Set vulnerability remediation priorities.
- Clean up unnecessary packages.
- Generate license compliance reports.

Ready to See It in Action?

Explore how ARMO’s Full SBOM with Runtime and License Insights can improve your risk posture, accelerate remediation, and streamline compliance, all from a single pane of glass.