LogoLogo
Get FDA readyServicesSolutionsGuardian helpGet a demo
  • Helm help center home
  • Get Started
    • Helm features
    • Quickstart process
    • Understand data sources and update frequency
    • Get familiar with the Helm UI
      • Understand your dashboard
      • Helm terminology
    • Don't have an SBOM?
      • Why SBOMs are critical to your present and future
      • Generate CycloneDX SBOM with open-source tools
      • Generate SPDX SBOM with open-source tools
        • Generate SBOM with Yocto on Linux
      • Convert your SBOM from CSV to CycloneDX
      • Get expert Services help
    • Upload your first SBOM
      • Upload or convert .zst SBOM files from Yocto on Linux
  • Automate and integrate
    • Automate and integrate risk prioritization and management
    • Automate SBOM and vulnerability management via Helm API SDK
    • Automate SBOM management via GitHub action
    • Automate SBOM management via MS Azure DevOps extension
    • Create and manage lifecycle rules to automate EOS and EOL information across all products
  • Match components
    • Match unmatched components
    • Understand match statuses
    • Understand match sources
    • Create and manage alias rules to match and rematch components across all products
  • manage sboms
    • Manage SBOM
      • Manage component
      • Manage licenses
      • Create, edit, or merge SBOMs
      • Export your SBOM
      • Upload new version of SBOM with each release
      • Archive a product or product version
    • Find out what products contain a particular component
  • manage vulnerabilities
    • Check whether a particular vulnerability impacts your products
    • Manage vulnerabilities
      • Identify and prioritize exploitable vulnerabilities
        • Get email notifications for new vulnerabilities
        • Send email with vulnerability details for future prioritization
        • Understand issue severity level
          • Understand the CVSS vulnerability scoring system
      • Rescore vulnerabilities in bulk or individually
      • Remediate vulnerabilities in bulk or individually
      • Patch Windows vulnerabilities in bulk or individually
      • Export vulnerabilities
  • Ensure FDA readiness
    • FDA-ready SBOM and vulnerability reports
      • Meet FDA requirements with your FDA SBOM report
      • VEX and VDR reports
    • Understand new FDA cybersecurity requirements for cyber devices
      • Is my device a cyber device?
      • What if I already submitted my cyber device?
    • What should my cybersecurity management plan entail?
      • What does risk management entail?
      • Verification & Validation: Build the right product/service/system in the right way
      • Why do I need a Quality Management System (QMS)?
      • Cybersecurity is everyone's responsibility
  • Terminology
    • Cybersecurity terminology
    • What is CPE?
      • How do I read a CPE string?
  • Administration
    • Manage users
    • Manage products
    • Modify your organization name
  • what's new
    • Changelog
Powered by GitBook

© Copyright MedCrypt 2024, All rights reserved.

On this page
  • Dashboard overview
  • Vulnerabilities over time
  • Top 5 impacted products
  • Top 5 vulnerable dependencies

Was this helpful?

Export as PDF
  1. Get Started
  2. Get familiar with the Helm UI

Understand your dashboard

Your dashboard provides an overview of your overall security posture. You can get to your dashboard by clicking the home icon on the sidebar.

Dashboard overview

This represents your total SBOMs and vulnerabilities across all time. The date range filter does not apply to these widgets.

Widget
Description

Total products all time

This shows the total number of products that you have managed since you began using Helm.

In Helm, you can manage a different SBOM for each product and version, to ensure that you understand and can effectively manage and communicate risk mitigation efforts across your total software supply chain.

Product versions with SBOMs

You can either upload an SBOM .json file, then specify the product and version all in the same step, or you can add your products and versions, then upload an SBOM for each product/version combo. This percentage shows you the number of product versions that you or someone on your team has uploaded SBOMs for.

Vulnerabilities over time

These widgets represent your vulnerabilities for a selected date range. You can view this for all versions within a product or for a particular product version.

Widget
Description

Total vulnerabilities

This shows the number of vulnerabilities that you have for the selected criteria.

Critical severity vulnerabilities

This shows the number of critical-level (CVSS score of 9-10) vulnerabilities that you have for the selected criteria.

Unremediated vulnerabilities

This shows the number of unremediated vulnerabilities that you have for the selected criteria.

Top 5 impacted products

Each donut chart represents the total number of vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions, as well as the percentage of vulnerabilities in each level of severity.

You can view these widgets across all of your products and versions, or filter down to view particular products and versions.

Get more details:

Hover over the donut chart to display a View details button. Click that button to drill down into details for that product.

Add your first product:

  1. If you haven’t added a product yet, you’ll see an Add new product button in this section.

  2. Click this to specify the product name, then click Save.

  3. To view your new product, click the Products option in the sidebar. Your new product will be selected in the products drop-down.

  4. You’ll now need to add a version for this product. In the version drop-down, select Create version.

Widget
Description

Total vulns (in donut chart)

This is the total number of vulnerabilities across this product within the selected date range.

Critical severity

This is the number of critical severity vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions.

Critical items have CVSS scores on a dark red background.

High severity

This is the number of high severity vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions.

High items have CVSS scores on a light red background.

Medium severity

This is the number of medium severity vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions.

Medium items have CVSS scores on a light orange background.

Low severity

This is the number of low severity vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions.

Low items have CVSS scores on a light green background.

Top 5 vulnerable dependencies

This shows your top 5 most vulnerable components within the selected date range, products and versions.

Widget
Description

Dependency name

This shows the name of the component that is contained within your selected products and versions.

Version

This shows the version for the component that is contained within your selected products and versions.

Supplier

This shows the supplier for the component that is contained within your selected products and versions.

Total vulnerabilities

This shows the total number of vulnerabilities that you have not yet remediated for this component.

Products impacted

This shows the number of your products that are impacted by this component, meaning that the corresponding SBOM contains this component. If you are viewing one product, this will show 1/1, but if you are viewing all of your products, this will show 1/n, with n being your current number of products.

Products impacted %

This shows the number of your products impacted by this component across your selected products. If you are viewing 1 product, this will show 100%, but if you are viewing all of your products, this will show the percentage of your products that are impacted.

Actions

You can click the View button to drill down to view how many times a component is used across your selected products and versions. From the search results, click Jump to product or Jump to vulnerabilities.

If you jump to this product, you’ll be able to see which product and product versions contain that component and version. From the Actions > … button, you can choose to view more details, add a review note, view review history, and more.

If you jump to vulnerabilities for this component, you can view the applicable vulnerabilities. From the Actions > … button, you can manage each vulnerability, including adding review notes and setting the Resolution. If you change this resolution, it will update the Product impact status.

PreviousGet familiar with the Helm UINextHelm terminology

Last updated 4 months ago

Was this helpful?

Specify the version, then click Save. Your new product version will be selected. You’re now ready to .

upload your SBOM