---
id: sbom-rescan
title_template: "Run SBOM rescan — {target_repo}"
default_priority: medium
default_labels: ["sbom", "security", "automated"]
default_assignee: null
---

# SBOM Rescan Task Template

## Description

An SBOM rescan is overdue for `{target_repo}`. The repository's last recorded
SBOM scan exceeds the 30-day staleness threshold.

## Steps

Run the following from the workstation:

```sh
cd ~/the-custodian/state-hub
make ingest-sbom REPO={target_repo} SCAN=1
```

The scan updates `last_sbom_at` in the State Hub and ingests the new SBOM into
the licence and dependency tracking tables.