Software Composition Analysis
Tooling that scans software for known-vulnerable components and license risks, and is the primary mechanism for generating and maintaining an SBOM.