Outbound — Compliance Documents¶
This chapter covers the documents you generate from TrustSource for external consumption — SBOMs, attribution files, SOUP lists, CSAF advisories and the verification tool.
| Page | What it covers |
|---|---|
| SBOM Files | Generate, upload, freeze and download Software Bills of Materials (SPDX, CycloneDX). |
| SOUP Files | Software of Unknown Provenance lists for medical devices. |
| Notice Files | Attribution / open-source notice file generation and maintenance. |
| CSAF Documents | CSAF security advisory creation, editing and JSON export. |
| Verification | Validate external SBOMs, CSAF documents, CBOMs or Notice files. |
[!TIP] Most outbound documents are generated automatically as part of the approval workflow. You can also generate them on demand from the module or project level.