Getting Started
What is Interlynk?
Interlynk is a platform for automating software supply chain security. It uses Software Bill of Materials (SBOM) and Vulnerability Exploitability eXchange (VEX) as base artifacts for managing and eliminating software supply chain risks.
With Interlynk, you can:
Generate SBOMs — Produce CycloneDX SBOMs from your build systems and package manifests with lynkctl
Manage SBOMs — Request and collect SBOMs from first-party build pipelines or third-party suppliers
Monitor vulnerabilities — Continuously track open-source dependencies and security vulnerabilities
Enforce policies — Prevent vulnerable, malicious, or insecure components from entering your codebase
Prioritize remediation — Implement risk-based prioritization for vulnerability remediation
Meet compliance requirements — Satisfy open-source license and SBOM compliance obligations
How It Works
Interlynk organizes your software supply chain data in a hierarchical model:
Organization → Product → Environment → Version (SBOM) → Components → VulnerabilitiesUpload an SBOM to a Product's Environment, and the platform automatically processes it — running quality checks, scanning for vulnerabilities, evaluating policies, and surfacing actionable insights.
To learn more, see Core Concepts.
Quick Start
1. Set Up Your Organization
Configure integrations with GitHub, GitLab, Jira, Slack, and more
Set up SSO for your team
2. Create Products and Upload SBOMs
Generate an SBOM from your build system or package manifests with lynkctl
Create a Product to represent your software
Upload SBOMs to track versions over time
Review packages and their dependencies
3. Monitor Security and Compliance
Track vulnerabilities across your software
Review licenses for compliance
Create policies to enforce standards
4. Gain Insights
View analytics across your portfolio
Assess tool coverage in your pipelines
Productivity Tools
Interlynk provides CLI tools to integrate with your workflows:
Last updated