Reports

Mia-Care P4SaMD can automatically generate documentation based on information about managed entities, like risks, requirements, tests and changes, to ensure compliance with most common documentation requirements outlined in international regulation and standards related to SaMD development.

In the following sections we illustrate the type of documentation you can generate out of the box, how you can do it and which information you can expect to find, but you can also use Mia-Care P4SaMD to generate additional documentation based on custom templates.

danger

Documentation completeness and correctness depend on correct and updated information available in the integrated ALM. If ALM information are missing, incorrect or outdated, the generated documentation may not be generated correctly, lack relevant information or include incorrect or outdated information.

Default templates

• SOUP Report
• Changelogs
• Unit Test report
• Vulnerability Report
• Software Architecture Design

Startup package of customizable templates

• Release Note
• Acceptance Test Report
• Verbale collaudo
• Traceability Matrix
• Change Request Report
• Software Architecture Description
• Risk Management Report

Changelogs

Mia-Care P4SaMD allows you to download changelogs of software items in PDF format.

The changelog is not generated from ALM entities, but directly from an existing changelog in Markdown format and following the CHANGELOG.md naming convention, located in your software item repository.

Software item

Available formats	Available for	Download from
PDF	Software item	Software Item drawer menu

You can download the changelog from the drawer that appears when you select a row in the software items table:

System version

Available formats	Available for	Download from
Zip archive containing PDF files	System version	Overview page

From the Overview page you can download a zip archive containing all the available changelogs of software items linked to the system version. Each changelog in the archive is named according the software item name and version.

Release notes

Available formats	Available for	Download from
PDF	System version	Overview page

The Release notes contain the list of all requirements and the hierarchy of software items (name and version) linked to the system version. You can download it from the Overview page.

SOUP report

Available formats	Available for	Download from
Excel (.xlsx)	System version	Overview page

The SOUP report contains information about Software of Unknown Provenance (SOUP) and can be downloaded from the Overview page.

The spreadsheet contains two tabs:

• Info: document generation metadata, including when it was generated (in dd/mm/yyyy format) and who generated it (user name and email address);
• SOUP Report: the list of SOUPs, with the following information:
  • Name: the name of th software item;
  • Version: the version of the software item;
  • Approved?: if the software item is approved;
  • Approver: who approved the software item;
  • Approval Date: when the software item was approved;
  • Medical Device: if the software item is classified as SaMD;
  • Class: the SaMD classification according to FDA, EU MDR, IMDRF or similar international regulations or standard;
  • Design Reference: a link to design specifications;
  • Manufacturer: the name of the software item manufacturer;
  • Verification Reason: information about the software item verification rationale and outcome;
  • License: the software item license;
  • Required Software and Hardware: software and hardware requirements.

Unit Test report

Available formats	Available for	Download from
Zip archive containing PDF files	System version	Overview page

The Unit Test report contains the outcome of the automated test suites linked to the software items of a software system and can be downloaded from the Overview page. Each report in the archive is named according the software item name and version it refers to.

Each report provides a list of test suites with the following information:

• Name: name of the test suite;
• Tests: number of tests executed;
• Errors: number of errors occurred;
• Failures: number of tests failed;
• Skipped: number of tests skipped;
• Time: how much time the test suite required to finish.

For each test case in the test suite the following information are provided:

• Test Case: name of the test case;
• Class: description of the test case;
• Time: how much time the test case required to finish.

Vulnerability Report

Available formats	Available for	Download from
Excel (.xlsx)	System version	Overview page

The Vulnerability Report contain the list of all vulnerabilities for wach software item for specific system version. You can download it from the Overview page.

The report provides the following information:

• Summary: The summary of software items and their Open, Exploitable, Unexploitable Exploitable With Minor Damage
• System Vulnerabilities: The information of all the available vulnerabilities in the specific system version, including:
  • Vulnerability ID: unique identifier of the vulnerability (e.g. CVE-2025-27152);
  • Name: name of the vulnerable package;
  • Repository ID: identifier of the repository;
  • Package ID: identifier of the package;
  • Title: title of the vulnerability;
  • Description: detailed description of the vulnerability;
  • Software Item: name of the software item;
  • Software Item Version: version of the software item;
  • Installed Version: installed version of the package;
  • Fixed Version: version where the vulnerability is fixed;
  • Severity: severity level (e.g. HIGH);
  • Severity Source: source of the severity rating;
  • Severity Score: severity score;
  • CVSS: CVSS score;
  • Published Date: date when the vulnerability was published;
  • Status: current status (e.g. OPEN);
  • Resolution: resolution status;
  • Justification: justification for the status;
  • Rationale: rationale for the decision;
  • Vendor Severity: severity assigned by the vendor;
  • Package status: status of the package;
  • PrimaryURL: link to the vulnerability details;
  • Approver: who approved the vulnerability;
  • Risks: linked risks;
  • RCM: linked risk control measures;
  • Last Updated Date: date of the last update.
• Info: The information of the system-version and the user

Software Architecture Design

Available formats	Available for	Download from
svg	System version	Overview page

The high level architecture image of software items for the specific system version.

Template Release notes

Available formats	Available for	Download from
Markdown	System version	Overview page
Docx	System version	Overview page

The Release notes contain the list of all requirements and the hierarchy of software items (name and version) linked to the system version. You can download it from the Overview page.

The report provides the following information:

• Signatures: table with Role, Name, and Signature for Author, Reviewer, and Approver;
• Reference Template: name and revision of the template used;
• Product information:
  • Product Name: name of the product;
  • Planned Date: planned release date;
  • Released Date: actual release date;
  • Version: version of the software system;
• Reference Documentation: scope of the document;
• New Features: list of requirements linked to the release, including:
  • Requirement: key, title, and link;
  • Tasks: list of tasks linked to the requirement (issue type, key, title, link);
  • Bugs: list of bugs linked to the requirement (key, title, link);
• Bugfix: list of bugs fixed in the release (key, title, link);
• Breaking Changes: list of possible breaking changes;
• Software System: list of software items composing the system (name, version, repository link);
• Document generation info: user who generated the document and timestamp.

Acceptance Test Report

Available formats	Available for	Download from
Markdown	System version	Overview page
Docx	System version	Overview page

The Acceptance Test Report contains the outcome of the acceptance testing activities and can be downloaded from the Overview page.

The report provides the following information:

• Reference Template: name and revision of the template used;
• Project Name: name of the project;
• Requesting Company:
  • Requester: name of the requester;
  • Offer Code: code of the offer;
  • Customer Company: extended name of the customer company;
  • Customer Requester: name of the customer requester;
• Date: date of the document;
• Location: location (e.g. Milano);
• Client: client company name;
• Mia-Care Project Manager: Product Owner name;
• Project Contact Person for the Client: client contact person;
• System Description: introduction and list of requirements;
• Reference Documents: Project Offer reference document name;
• Final Release:
  • Acceptance Test Subject: subject of the acceptance test;
  • Outcome: result of the test (e.g. POSITIVE);
  • Subsequent Activities: agreement details for AMS service;
• Signatures: Mia-Care Project Manager and Client Manager;
• Document generation info: user who generated the document and timestamp.

Verbale di Collaudo

Available formats	Available for	Download from
Markdown	System version	Overview page
Docx	System version	Overview page

The Verbale di Collaudo contains the outcome of the acceptance testing activities and can be downloaded from the Overview page.

The report provides the following information and the template is in italian:

• Template di riferimento: name and revision of the template used;
• Nome Progetto: name of the project;
• Società richiedente:
  • Richiedente: name of the requester;
  • Codice Offerta: code of the offer;
  • Società richiedente estesa: extended name of the customer company;
  • Referente cliente: name of the customer requester;
• Data: date of the document;
• Luogo: location (e.g. Milano);
• Committente: client company name;
• Responsabile Progetto Mia Care: Product Owner name;
• Referente di progetto per il committente: client contact person;
• Descrizione sistema: introduction and list of requirements;
• Documenti di riferimento: Project Offer reference document name;
• Rilascio finale:
  • Oggetto collaudo: subject of the acceptance test;
  • Esito: result of the test (e.g. POSITIVE);
  • Attività successive: agreement details for AMS service;
• Firme: Mia-Care Project Manager and Client Manager;
• Document generation info: user who generated the document and timestamp.

Traceability Matrix

Available formats	Available for	Download from
Markdown	System version	Overview page
Docx	System version	Overview page

The Traceability Matrix contains the traceability information between requirements, tests, risks, software items and change requests and can be downloaded from the Overview page.

The report provides the following information:

• Signatures: table with Role, Name, and Signature for Author, Reviewer, and Approver;
• Reference Template: name and revision of the template used;
• Document version: version of the document;
• Scope: scope of the document;
• Product information:
  • Product Name: name of the product;
  • Planned Date: planned release date;
  • Released Date: actual release date;
  • Version: version of the software system;
• Reference Documentation: scope of the document;
• Matrix: table with the following columns for each requirement:
  • Requirement key: key of the requirement;
  • Verified by (Test): list of tests verifying the requirement (key);
  • Mitigates (Risk): list of risks mitigated by the requirement (key, title);
  • Implemented in (Software Item): list of software items implementing the requirement (name, version);
  • Affected by (Change Request): list of change requests affecting the requirement (key, title);
• Document generation info: user who generated the document and timestamp.

Change Request Report

Available formats	Available for	Download from
Markdown	System version	Overview page
Docx	System version	Overview page

The Change Request Report contains the list of change requests linked to the system version and can be downloaded from the Overview page.

The report provides the following information:

• Signatures: table with Role, Name, and Signature for Author, Reviewer, and Approver;
• Reference Template: name and revision of the template used;
• Scope: scope of the document;
• Product information:
  • Product Name: name of the product;
  • Planned Date: planned release date;
  • Released Date: actual release date;
  • Version: version of the software system;
• Reference Documentation: scope of the document;
• Summary of Change Requests: list of change requests (key, title);
• Change Requests: detailed list of change requests, including:
  • Key and Title;
  • Classification: classification of the change request;
  • Description: detailed description;
  • Acceptance criteria: criteria for acceptance;
  • Affected Version: version affected by the change;
  • Approval Date: date of approval;
  • Assignee: person assigned to the change request;
  • Status: current status;
  • Linked Requirements: list of linked requirements (key, title);
  • Notes: additional notes;
• Conclusion: conclusion on change requests implemented in the software system version;
• Document generation info: user who generated the document and timestamp.

Software Architecture Description

Available formats	Available for	Download from
Markdown	System version	Overview page
Docx	System version	Overview page

The Software Architecture Description contains the description of the software architecture and design and can be downloaded from the Overview page.

The report provides the following information:

• Signatures: table with Role, Name, and Signature for Author, Reviewer, and Approver;
• Reference Template: name and revision of the template used;
• Document version: version of the document;
• Scope: scope of the document;
• Product Information:
  • Product Name: name of the product;
  • Product Version: version of the software system;
  • Planned Date: planned release date;
  • Released Date: actual release date;
• Reference Documentation: scope of the document;
• Software Architecture Overview:
  • Schema: software architecture image;
  • Components: list of software items (name, version, parent, parent type, safety class, SOUP);
• Software Design: description of software design (e.g. authentication, design patterns);
• Development Tools: list of tools used for development;
• Development Environment: description of development environments;
• Software Deployment: description of the deployment process;
• Main Technical Decision Justifications: rationale for main technical decisions;
• Document generation info: user who generated the document and timestamp.

Risk Management Report

Available formats	Available for	Download from
Markdown	System version	Overview page
Docx	System version	Overview page

The Risk Management Report contains the risk analysis and management information and can be downloaded from the Overview page.

The report provides the following information:

• Signatures: table with Role, Name, and Signature for Author, Reviewer, and Approver;
• Reference Template: name and revision of the template used;
• Document version: version of the document;
• Scope: scope of the document;
• Product information:
  • Product Name: name of the product;
  • Planned Date: planned release date;
  • Released Date: actual release date;
  • Version: version of the software system;
• Reference Documentation: scope of the document;
• Summary of Risks: list of risks (key, title);
• Risk Analysis: detailed analysis for each risk:
  • Key, Status, Title;
  • Assignee: person assigned to the risk;
  • Hazard: description of the hazard;
  • Sequence Of Events: sequence of events leading to the hazardous situation;
  • Hazardous Situation: description of the hazardous situation;
  • Harm: description of the harm;
  • Risk Assessment: table with Probability, Probability Notes, Severity, Risk (P*S), Probability after RCM, Severity after RCM, Residual Risk;
  • Linked Software Items: number of linked software items;
  • Linked Risk Control Measures: list of linked requirements (key, title);
• Verification of Risk Control Measures: comments on verification;
• Conclusion: conclusion on overall residual risk and benefit-risk analysis;
• Document generation info: user who generated the document and timestamp.