Reports for Open Source Components
Dynatrace provides cryptographically signed Software Bill of Materials (SBOMs) and license notice files for selected products, with more being added over time.
Our SBOMs follow the CycloneDX standard and contain detailed, machine-readable inventories of every software component and dependency bundled within an artifact. They enable effective vulnerability management, identification of license compliance issues, and support end-to-end visibility of supply chain risks.
Current SBOM Coverage
| Dynatrace product | SBOM | How to retrieve & verify |
|---|---|---|
| ActiveGate Container Image (Regular & FIPS) | ✅ Provided via in-toto attestation | Verification Guide |
| EdgeConnect Container Image | ✅ Provided via in-toto attestation | Verification Guide |
| Managed Installer | ✅ Bundled with our signed installers | Verification Guide |
| OneAgent Installer | ✅ Bundled with our signed installers | agentinstaller-sbom-external.cdx.json is stored in the local OneAgent installation folder |
| Operator Container Image | ✅ Provided via in-toto attestation | Verification Guide |
Reports by Version
Dynatrace Managed
| Version | SBOM | License Notice File |
|---|---|---|
| 1.336 | SBOM for Cluster Managed 1.336 | Licenses for Cluster Managed 1.336 |
| 1.334 | SBOM for Cluster Managed 1.334 | Licenses for Cluster Managed 1.334 |
| 1.332 | Licenses for Cluster Managed 1.332 | |
| 1.328 | Licenses for Cluster Managed 1.328 | |
| 1.326 | Licenses for Cluster Managed 1.326 | |
| 1.324 | Licenses for Cluster Managed 1.324 | |
| 1.322 | Licenses for Cluster Managed 1.322 | |
| 1.320 | Licenses for Cluster Managed 1.320 | |
| 1.318 | Licenses for Cluster Managed 1.318 | |
| 1.316 | Licenses for Cluster Managed 1.316 | |
| 1.314 | Licenses for Cluster Managed 1.314 | |
| 1.312 | Licenses for Cluster Managed 1.312 |
Dynatrace OneAgent
| Version | SBOM | License Notice File |
|---|---|---|
| 1.335 | Licenses for OneAgent 1.335 | |
| 1.333 | Licenses for OneAgent 1.333 | |
| 1.331 | Licenses for OneAgent 1.331 | |
| 1.329 | Licenses for OneAgent 1.329 | |
| 1.327 | Licenses for OneAgent 1.327 | |
| 1.325 | Licenses for OneAgent 1.325 | |
| 1.323 | Licenses for OneAgent 1.323 | |
| 1.321 | Licenses for OneAgent 1.321 | |
| 1.319 | Licenses for OneAgent 1.319 | |
| 1.317 | Licenses for OneAgent 1.317 | |
| 1.315 | Licenses for OneAgent 1.315 | |
| 1.313 | Licenses for OneAgent 1.313 | |
| 1.311 | Licenses for OneAgent 1.311 |
Dynatrace ActiveGate
| Version | SBOM | License Notice File |
|---|---|---|
| 1.335 | SBOM for ActiveGate 1.335 | Licenses for ActiveGate 1.335 |
| 1.333 | Licenses for ActiveGate 1.333 | |
| 1.331 | Licenses for ActiveGate 1.331 | |
| 1.329 | Licenses for ActiveGate 1.329 | |
| 1.327 | Licenses for ActiveGate 1.327 | |
| 1.325 | Licenses for ActiveGate 1.325 | |
| 1.323 | Licenses for ActiveGate 1.323 | |
| 1.321 | Licenses for ActiveGate 1.321 | |
| 1.319 | Licenses for ActiveGate 1.319 | |
| 1.317 | Licenses for ActiveGate 1.317 | |
| 1.315 | Licenses for ActiveGate 1.315 | |
| 1.313 | Licenses for ActiveGate 1.313 | |
| 1.311 | Licenses for ActiveGate 1.311 |