Skip to main content
Version: v2.18.x

Bill of Materials

Bill of Materials

Zowe™ uses the SPDX SBOM format to represent its bill of materials. To read more about why SBOMs and SPDX are used, see this blog. The hash codes can be used to validate your download is authentic using a command like openssl dgst -sha1 <downloaded_sbom.zip>. Zowe SBOMs are as follows:

TypeComponentSBOM LinkSHA-1 Hash
Artifact SBOMZowe z/OS Components (PAX, SMP/E, PSWI)SBOM Link3ed80afaadfdabe1112c7063fe297d5f
Artifact SBOMZowe CLI Standalone PackageSBOM Link98b75ca32cc08664574da1886d28c625463cceba
Artifact SBOMZowe CLI Standalone Plugins PackageSBOM Link7d1e06e579b4dcc69c44405a47dfebc386426b0f
Artifact SBOMZowe Client NodeJS SDKSBOM Linkc61bd6b9f78ba2aa67a0f4e53874a097992d8155
Artifact SBOMZowe Client Python SDKSBOM Link637c5f90f94a88cb534bead7755fac112b509217
Source Code SBOMAll Zowe's Source Repositories used in final artifactsSBOM Link19d2b81b0fa2955d165123871c72c2c77ddf73b7