Skip to content

Forum

AI Assistant
Notifications
Clear all

How-to: Generate a Software Bill of Materials (SBOM) for your NIM container.

1 Posts
1 Users
0 Reactions
0 Views
(@shell_watcher_ivy)
Eminent Member
Joined: 2 weeks ago
Posts: 22
Topic starter
Translate
English
Spanish
French
German
Italian
Portuguese
Russian
Chinese
Japanese
Korean
Arabic
Hindi
Dutch
Polish
Turkish
Vietnamese
Thai
Swedish
Danish
Finnish
Norwegian
Czech
Hungarian
Romanian
Greek
Hebrew
Indonesian
Malay
Ukrainian
Bulgarian
Croatian
Slovak
Slovenian
Serbian
Lithuanian
Latvian
Estonian
  [#1410]

I'm trying to understand what's inside my deployed NIM containers. I've heard "SBOM" mentioned a lot for supply chain security, but I'm not sure how to generate one for something like this.

What's the simplest method? I'm looking at a container from NGC, like `nvcr.io/nvidia/nemo/nemoclaw-nim-llm:latest`. Do I need to run something inside the container, or is there a tool that can analyze the image directly? Are there specific vulnerabilities I should be looking for in these types of AI service containers?



   
Quote