Audit (SCA)

Contrast Audit is a Software Comprehensive Analysis (SCA). An SCA is a way to identify and track open source components used or stored in a project. Running Contrast Audit will identify vulnerabilities in those third part components.

To run Contrast Audit run the following command: contrast audit [option]

To generate an SBOM in Cyclone DX format run the following Command: contrast audit --[path to file] --save

To track the results on the Contrast site contrast audit --[path to file] --track

Helpful links: Contrast CLI Commands