Outbound¶
This chapter covers the documents you generate from TrustSource for external consumption — SBOMs, CBOMs, attribution files, SOUP lists, CSAF advisories and the verification tool.
| Page | What it covers |
|---|---|
| SBOM + CBOM | Generate, upload, freeze and download Software and Cryptography Bills of Materials (SPDX, CycloneDX). |
| Notice Files | Attribution / open-source notice file generation and maintenance. |
| SOUP Lists | Software of Unknown Provenance lists for medical devices. |
| CSAF | CSAF security advisory creation, editing and JSON export. |
| Verify | Validate external SBOMs, CSAF documents, CBOMs or Notice files. |
[!TIP] Most outbound documents are generated automatically as part of the approval workflow. You can also generate them on demand from the module or project level.