Digi ConnectCore Security Services allow you to automatically scan your firmware SBOM (Software Bill of Materials) for vulnerabilities during the development phase, directly from your Yocto build process. This enables early detection and remediation of security issues before firmware is released or deployed.
| This workflow is designed for development teams who build firmware frequently (for example, daily builds) and want to integrate vulnerability scanning into their CI/CD pipelines without manual uploads or using the Digi Remote Manager web interface. |
This automated SBOM scanning workflow for Yocto builds is not yet implemented. Please refer to the section on scanning production firmware (see Analyze production firmware) for currently available functionality.
