v1.0.0

14 June 2024

IBM® Concert is available for purchase and general use. The initial feature set includes:

• Arena view- Comprehensive, interactive view of your application landscape with toggles to overlay prioritized CVE and compliance assessments to understand the scope of impact across your images, repositories, and environments.
• Third-party data ingestion - Connect with supported third-party tools and services or upload SBOM files in the custom Concert-defined or CycloneDX formats.
• Application risk management - Quickly identify and prioritize CVEs based on the scope of impact on your application components and receive actionable recommendations for resolution.
• Application compliance management - Assess your application’s compliance posture against NIST 800-53 for a deeper understanding of potential compliance issues. Anticipate the compliance impact of development decisions in the pre-deployment stage before it affects the users.
• Application certificate management- Identify expiring certificates and prioritize renewals by using automation to ensure uninterrupted operations.
• Automation rules - Configure automated ticket or issue creation and assignment in Jira, GitHub, or ServiceNow upon an impacting CVE, compliance issue, or certificate.
• Evidence store - Track data-related changes over time by comparing SBOM files from a historical log.