Security Reports

Download security scan reports (Trivy vulnerability scans, OpenSCAP CIS compliance, and SBOM) for each build environment.

GovCloud/Commercial

ARM64

• Download security-reports-pelotech-sor-gov-arm64-al2023-ami-arm64.tar.gz

x86_64

• Download security-reports-pelotech-sor-gov-al2023-ami-x86.tar.gz

---

Each tarball contains:

• oscap-report.html — OpenSCAP CIS Level 2 compliance report
• oscap-results.xml — OpenSCAP machine-readable results
• trivy-report.json — Trivy vulnerability scan results
• trivy-sbom.cdx.json — CycloneDX software bill of materials

Note: The security report tarballs on this page are populated at release time. They are downloaded from the GitHub release during CI and are not checked into the repository.