Helm help center

Get started

• Quickstart process

• Upload SBOM

• Automate SBOM management via GitHub

• Understand data sources and update frequency

Don't have an SBOM yet?

• Generate CycloneDX SBOM

• Generate SPDX SBOM

• Create SBOM manually

• Get expert Services help

Getting around Helm

• Sign in

• Get familiar with the Helm UI

• Understand your home dashboard

• Helm terminology

Match to known software

• How do I know when my software is successfully matched?

• Understand match statuses

• Resolve a Select match status

• Assess match suggestions

• Resolve a Not found status

• Matched to package manager status

• Understand match sources

• View vulnerability details

• Link unmatched software to known software

Automate & integrate

• Automate risk prioritization and management

• Auto-update component EOS/EOL information across products

• Auto-enrich missing licenses for comprehensive license risk view

• Auto-enrich CPEs and PURLs to ensure accurate matching

• Automatically rescore all vulnerabilities for your for your security posture

• Auto-update vulnerabilities with exploitability and fixability changes

• Create aliases to auto-match components to known software

• Automate tasks with our Helm API

• Integrate our GitHub action into your CI/CD process to automate SBOM uploads

• Export your FDA-ready SBOM

Manage SBOMs

• Manage SBOM

• Create, edit, or merge SBOMs

• View dependency component details

• Find out what products contain a particular dependency component

• Export FDA SBOM

• Export FDA-ready VEX and VDR reports

Prioritize vulnerabilities

• Get new vulnerability emails

• Manage vulnerabilities

• Auto-update vulnerabilities with exploitability and fixability changes

• Focus on your most exploitable vulnerabilities

• Understand issue severity levels

• View exploitable issues

• Find out if a vulnerability impacts your products

Rescore vulnerabilities

• What are rescore profiles and why will they help me?

• Auto-rescore all vulnerabilities for a product version

• Auto-update all CVSS scores with exploitability or fixability updates

• Understand CVSS vulnerability scoring and rescoring

• Rescore individual vulnerabilities

Resolve Windows vulnerabilities

• Apply Windows KBs to resolve multiple vulnerabilities across product

• Apply Windows KB to resolve individual vulnerability

Remediate vulnerabilities

• Bulk remediate vulnerabilities across one or more products or components

• Remediate individual vulnerability

• Send vulnerabilities to R&D for remediation prioritization

Ensure FDA readiness

• FDA-ready reports

• Ensure smooth FDA submission with FDA SBOM

• Understand new FDA requirements for cyber devices

• Is my device a cyber device?

• What if I already submitted my cyber device?

• What should my cybersecurity management plan entail?

Check out the latest updates!

• Changelog

API

• Download Helm API SDK

• Start using Helm API

• Upload one or multiple SBOMs

• Get unmatched components

• Get vulnerabilities

• Get CISA KEV vulnerabilities

• Generate FDA SBOM or VEX reports

Administration

• Manage users

• Manage products