🚧 DevGuard & this page is under active development. Visit the DevGuard Repo →

Feature Guides

Welcome to the DevGuard feature guides. Here you’ll find detailed instructions and explanations on how to utilize various features of DevGuard to enhance your security posture:

Ingesting Upstream Information — Learn how to ingest VEX documents and SBOMs from upstream sources to enhance your vulnerability management.
Discovering Base Image Attestations — Understand how to automatically discover and extract attestations from container base images referenced in your Dockerfiles.
Mapping Several Assets and Artifacts (e.g., Monorepos) — A guide on how to effectively map multiple assets and artifacts, such as monorepos, within DevGuard for comprehensive risk assessment.

Setup GitHub Integration Ingesting Upstream Information