DeployHub SBOM Management is a platform that generates, consumes, and manages Software Bills of Materials (SBOMs) to identify and remediate vulnerabilities across software components. The platform provides visibility into open-source libraries, dependencies, and third-party modules used in applications. The tool integrates into CI/CD pipelines to automatically generate and update SBOMs with each build. It includes an evidence store that captures SBOMs for each component release, enabling aggregation of SBOM data across all components to produce application-level views of software solutions. The platform correlates software components with known Common Vulnerabilities and Exposures (CVEs) to identify security risks. It tracks vulnerabilities throughout the software lifecycle from build to runtime. The system supports federated SBOM management for cloud-native decoupled architectures where components are managed independently. DeployHub supports multiple SBOM formats including SPDX, CycloneDX, and SWID. The platform provides license compliance tracking and component provenance information to assess risks from open-source packages. It enables real-time vulnerability detection and automated remediation workflows through CI/CD integration.