Reliza BEAR

ReARM supports integration with Reliza's BEAR project for BOM enrichment.

BEAR is used to enrich SBOMs/xBOMs with the following elements, if not present already:

• Supplier
• License
• Copyryght string

This is particular useful for the License Compliance workflow and to achieve regulatory compliance, such as NTIA minimum elements.

BEAR is offered as a SaaS service by Reliza for ReARM Pro users, included in the subscription, but can also be self-hosted for ReARM CE users.

Pre-requisites

You need to have a running instance of BEAR.

BEAR Part

Configure API token as described in the BEAR documentation.

ReARM Part

1. In ReARM, open Organization Settings from the menu on the left.
2. In the Integrations section, click on "Add BEAR Integration" button.
3. Enter your BEAR URI (if you are a ReARM Pro user, this will be provided to you by Reliza).
4. Enter your BEAR API Key (if you are a ReARM Pro user, this will be provided to you by Reliza).
5. Optionally, configure skip patterns - these are patterns to match on your organization internal components for which you would like to aovid BEAR enrichment (such components will not be sent to BEAR service for enrichment).
6. Click Submit - your BEAR integration is now configured.