Skip to content

Docs CSC now features an automatic Finnish translation. Click here for more information.

Warning!

Puhti and Mahti are being decommissioned in stages, and their storage areas will become fully unavailable from 15 October 2026. Clean up unnecessary files and move any data you need to keep by 31 August 2026. See the Roihu data migration guide for instructions on transferring your data to Roihu.

Puhti scratch is very full: keep only active data there and move or delete everything else. No new Puhti scratch quota will be granted.

SBOM Generation

SBOM (Software Bill of Materials) generation in Satama provides users with a clear inventory of the components, libraries, and dependencies included in a container image.

SBOM generation helps improve software transparency and supply chain security by showing exactly what software is included inside an image.

Benefits of SBOM

  • Better visibility into image contents
  • Faster vulnerability investigation
  • Compliance with security standards
  • Improved supply chain security

Automatically generate SBOM

You can enable automatic SBOM generation of images on push.

  • Inside the project, navigate to Configuration tab.
  • Locate the SBOM generation section.
  • Check box in front of Automatically generate SBOM on push

When SBOM generation is enabled, Satama automatically analyzes images after they are pushed to a project, producing a structured list of components that can be viewed directly from the image details page. If disabled, user can manually trigger SBOM generation, click on the repository and select the image. Now you can start scanning by clicking the button 'generate SBOM'.