Create and manage lifecycle rules to automate EOS and EOL information across all products
Last updated
Was this helpful?
Last updated
Was this helpful?
Lifecycle rules ensure consistency across your product portfolio by automatically applying Level of Support and End-of-Life (EOL)/End-of-Support (EOS) information to components in all current and future SBOMs. can create lifecycle rules in Helm's Rules manager to streamline compliance with FDA cybersecurity requirements.
Each rule defines conditions based on supplier name, component name, and component version and applies specified lifecycle information when all conditions are met. These rules take precedence over user-provided lifecycle data and can be reordered by dragging and dropping in the Lifecycle Rules list. The applied information is included in your , ensuring accuracy and automation.
Streamline FDA compliance: Automatically include required lifecycle information in FDA reports
Ensure consistency: Apply the same lifecycle data across your entire product portfolio
Save time: Update lifecycle information once and have it apply everywhere
Improve accuracy: Eliminate manual data entry errors with automated rules
Maintain flexibility: Easily adjust rules as product lifecycle information changes
When lifecycle rules are applied, they affect:
Existing SBOMs: All previously uploaded SBOMs will have the lifecycle information applied
Future SBOMs: Any new uploads will automatically have the rules applied
FDA SBOM reports: The lifecycle information will be included in FDA compliance reports
User-provided data: Rules take precedence over any manually entered lifecycle information
Click the Rules manager in the sidebar.
Click the Lifecycle rules tab.
In this tab, click the Add lifecycle rule button.
To set rule conditions, select the corresponding field and comparator, then specify the expected matching value. You can add one condition for each metadata field.
Each condition uses AND logic, so everything must be true for the effects to apply.
If there is an existing lifecycle rule that exactly matches your criteria, you'll be prompted to discard this pending edit or change the criteria.
Below the conditions, you can set each action you want to automatically perform when all conditions match. Select the corresponding field, comparator, and expected matching value.
For Level of support and EOS/EOL (end-of-support and end-of-life) information, you can specify either is equal to date
, then select a specific date, or set it as is equal to text
, then provide the respective text value.
When finished adding rules, updating rules, and/or changing rule priority, click Save & apply lifecycle rules. Note that unsaved changes will only persist during your Helm session, so make sure to save and apply anything you don't want to be discarded.
After you confirm these changes, Helm will apply them to existing and future SBOMs.
Lifecycle rules are applied according to their position on the rules list.
Drag-and-drop them higher to increase their priority or lower to decrease their priority.
Click Save & apply changes. This will apply any changes you have made, including adding new rules, marking rules for deletion, and reprioritizing.
Click Edit on any lifecycle rule to modify it.
Make any modifications to conditions and/or actions to perform, then click Save.
To change rule priority, click the drag icon next to the rule name to drag it to a different position in the list. Rule priority is determined by the order of the rules in the list. If multiple rules impact a component, the one highest in the list takes precedence. If you are just changing rule priority, but not marking any rules for deletion, click Save & apply lifecycle rules.
To delete a rule, click the Mark for deletion action. After marking the rules you want deleted, as well as making any priority changes, click the global Review changes button at the bottom of the rule list.
When you're finished making changes, click Save & apply lifecycle rules.
After you confirm these changes, Helm will apply them to existing and future SBOMs.
Note that unsaved changes will only persist during your Helm session, so make sure to save and apply anything you don't want to be discarded.
Deleted rules will be unapplied from existing SBOMs, and will not be applied to future SBOMs. You cannot recover a deleted rule.
Click the Rules item in the sidebar.
Click the Lifecycle rules tab.
Click Mark for deletion on the lifecycle rules you want to delete. Above the rule list, you'll see the total rules marked for deletion. If you change your mind for a rule, click Unmark for deletion.
If you need to change priority of any rules as a result of these impending deletions, drag-and-drop the respective rules higher or lower in the list.
Click Save & apply changes button. This will display a confirmation panel showing the impact of your potential deletions across your portfolio.
If you are deleting the only rule you have, you will be prompted to confirm applying all unsaved changes. In that case, you'll now see a blank rule, so that you can add more rules in the future.
Confirm your changes. You'll see a success notification that the rule will no longer be applied to existing or future SBOMs.
Rule naming: You cannot currently edit rule names. They are automatically generated based on conditions.
Rule conflicts: When multiple rules could apply to the same component, the rule higher in the list takes precedence.
Session persistence: Always save your changes before navigating away, as unsaved changes will be lost.
Verification: After applying rules, check a sample of matching components to verify the rules are working as expected.
Rules are named according to the criteria specified for them, for example: [Supplier name]/[Component name]/[Version]
. You cannot currently edit rule names. If this is important to you, .