LogoLogo
Get FDA readyServicesSolutionsGuardian helpGet a demo
  • Helm help center home
  • Get Started
    • Helm features
    • Quickstart process
    • Understand data sources and update frequency
    • Get familiar with the Helm UI
      • Understand your dashboard
      • Helm terminology
    • Don't have an SBOM?
      • Why SBOMs are critical to your present and future
      • Generate CycloneDX SBOM with open-source tools
      • Generate SPDX SBOM with open-source tools
        • Generate SBOM with Yocto on Linux
      • Convert your SBOM from CSV to CycloneDX
      • Get expert Services help
    • Upload your first SBOM
      • Upload or convert .zst SBOM files from Yocto on Linux
  • Automate and integrate
    • Automate and integrate risk prioritization and management
    • Automate SBOM and vulnerability management via Helm API SDK
    • Automate SBOM management via GitHub action
    • Automate SBOM management via MS Azure DevOps extension
    • Create and manage lifecycle rules to automate EOS and EOL information across all products
  • Match components
    • Match unmatched components
    • Understand match statuses
    • Understand match sources
    • Create and manage alias rules to match and rematch components across all products
  • manage sboms
    • Manage SBOM
      • Manage component
      • Manage licenses
      • Create, edit, or merge SBOMs
      • Export your SBOM
      • Upload new version of SBOM with each release
      • Archive a product or product version
    • Find out what products contain a particular component
  • manage vulnerabilities
    • Check whether a particular vulnerability impacts your products
    • Manage vulnerabilities
      • Identify and prioritize exploitable vulnerabilities
        • Get email notifications for new vulnerabilities
        • Send email with vulnerability details for future prioritization
        • Understand issue severity level
          • Understand the CVSS vulnerability scoring system
      • Rescore vulnerabilities in bulk or individually
      • Remediate vulnerabilities in bulk or individually
      • Patch Windows vulnerabilities in bulk or individually
      • Export vulnerabilities
  • Ensure FDA readiness
    • FDA-ready SBOM and vulnerability reports
      • Meet FDA requirements with your FDA SBOM report
      • VEX and VDR reports
    • Understand new FDA cybersecurity requirements for cyber devices
      • Is my device a cyber device?
      • What if I already submitted my cyber device?
    • What should my cybersecurity management plan entail?
      • What does risk management entail?
      • Verification & Validation: Build the right product/service/system in the right way
      • Why do I need a Quality Management System (QMS)?
      • Cybersecurity is everyone's responsibility
  • Terminology
    • Cybersecurity terminology
    • What is CPE?
      • How do I read a CPE string?
  • Administration
    • Manage users
    • Manage products
    • Modify your organization name
  • what's new
    • Changelog
Powered by GitBook

© Copyright MedCrypt 2024, All rights reserved.

On this page
  • Bulk rescoring and remediation
  • Auto-enrich data
  • Automate and integrate
  • Compliance and reporting

Was this helpful?

Export as PDF
  1. Automate and integrate

Automate and integrate risk prioritization and management

PreviousUpload or convert .zst SBOM files from Yocto on LinuxNextAutomate SBOM and vulnerability management via Helm API SDK

Last updated 2 months ago

Was this helpful?

Helm provides many ways to ensure you have a comprehensive and accurate view of your overall risk that is tailored to your product's particular security posture, enabling you to spend your limited time on the vulnerabilities that matter most.

Bulk rescoring and remediation

  • according to your product's security posture, ensuring you're focusing on the most exploitable vulnerabilities. Toggle on auto-update to automatically rescore vulnerabilities that have exploitability and fixability changes.

  • across one or more products or components.

  • across a product version or multiple products by aligning digital KB patch levels with their physical device counterparts, or by leveraging our Windows KB patch recommendations.

Auto-enrich data

  • to automatically update component Level of support and EOS/EOL information across all products, ensuring consistency and regulatory compliance.

  • All vulnerabilities are automatically updated with severity and exploitability information.

  • to automatically (only for components that do not already have associated licensing information), ensuring you're not missing valuable license risk that could even impact your IP.

  • If we identify inaccurate CPEs or PURLs in your SBOM, Helm will attempt to provide an that matches to the correct software.

  • that have exploitability or fixability updates.

Automate and integrate

  • For components we're unable to match, you can to automatically match these to known software for future SBOMs.

  • to automate many tasks, such as creating product versions, uploading SBOMs, returning all vulnerabilities and generating reports, as well as returning only unmatched components or only CISA KEV vulnerabilities.

  • your CI/CD process or use it independently to automate product version creation and SBOM uploads.

  • Integrate our into your CI/CD pipeline to automate product version creation and SBOM uploads.

Compliance and reporting

to ensure you have everything you need for FDA submission.

Export FDA-ready , , and VDR reports to meet compliance and regulatory requirements.

Export your FDA-ready SBOM
SBOM
VEX
Bulk rescore all vulnerabilities
Bulk remediate vulnerabilities
Bulk patch Windows vulnerabilities
Set rules
Reload components
add missing licenses
enriched CPE or PURL
create aliases
Use our Helm API
Integrate our GitHub action
Microsoft Azure DevOps extension
Auto-rescore all vulnerabilities