Interlynk is a platform for automating software supply chain security. It uses Software Bill of Materials (SBOM) and Vulnerability Exploitability eXchange (VEX) as base artifacts for managing and eliminating software supply chain risks.
With Interlynk, you can:
Manage SBOMs — Build, request, and collect SBOMs from first-party build pipelines or third-party suppliers
Monitor vulnerabilities — Continuously track open-source dependencies and security vulnerabilities
Enforce policies — Prevent vulnerable, malicious, or insecure components from entering your codebase
Prioritize remediation — Implement risk-based prioritization for vulnerability remediation
Meet compliance requirements — Satisfy open-source license and SBOM compliance obligations
Interlynk organizes your software supply chain data in a hierarchical model:
Organization → Product → Environment → Version (SBOM) → Components → VulnerabilitiesUpload an SBOM to a Product's Environment, and the platform automatically processes it — running quality checks, scanning for vulnerabilities, evaluating policies, and surfacing actionable insights.
To learn more, see Core Concepts.
Configure integrations with GitHub, GitLab, Jira, Slack, and more
Set up SSO for your team
Create a Product to represent your software
Upload SBOMs to track versions over time
Review packages and their dependencies
Track vulnerabilities across your software
Review licenses for compliance
Create policies to enforce standards
View analytics across your portfolio
Assess tool coverage in your pipelines
Interlynk provides CLI tools to integrate with your workflows:
Last updated