
SPDX
@spdxteam
An open standard for communicating software bill of material (SBOM) information, including components, licenses, copyrights, and security references.
ID: 900771635707424768
http://spdx.github.io/spdx-spec/ 24-08-2017 17:27:48
125 Tweet
422 Followers
125 Following

If you're going to OpenEmbedded's OE workshop on February 6 in Brussels, don't miss this talk by Arm's Peter Hoyes about "Integrating #ZephyrRTOS using Yocto Project." Learn more: hubs.la/Q01B51kg0 Zephyr Project #opensource #embedded #openembedded #RTOS



Shaheem Azmal and Gaurav Mizra from Siemens presenting how Fossology reads licensing information from source code at the FOSDEM @[email protected] #SBOM devroom



Check out "Open Source Law Policy and Practice Book Panel" with Amanda Brock (Amanda Brock), Jilayne Lovejoy (Jilayne Lovejoy), Kate Stewart (Kate Stewart ), Karen Sandler (karen sandler), Nithya Ruff (Nithya Ruff) & Pamela Chestek ([email protected]) on YouTube! youtu.be/KaOE1J8ycJs

Get the latest on the SBOM Everywhere working group from @joshbressers and Kate Stewart in this new theopenssf blog post. #sbom #security #opensource


📢bom v0.5.1 the Kubernetes SPDX SBOM tool is out! This release embeds the SPDX license list to generate SBOMs in airgapped envs, adds support for apk packages + lots of bug fixes Big thanks to sbs developer-guy Rose Judge and Carlos for contributing!

Software #supplychain transparency is emerging w/ #SBOMs. In this RSAConference talk on April 25 at 9:40 am, The Linux Foundation's Kate Stewart & CYBEATS's Chris Blask present best practices that improve IP control, lower operational costs & more: hubs.la/Q01MgNN80


Excited to get the perspectives of Kate Stewart and Chris Blask on what the world will look like when #SBOM is ubiquitous.




I look forward to attending the SBOM-a-rama next week in Los Angeles, hosted by the Cybersecurity and Infrastructure Security Agency. theopenssf and SPDX believe SBOMs are a core part of securing our Open Source supply chain. Let me know if you'll be there! cisa.gov/sbom-2023-agen…


Providing Transparency at Software Development’s core process: build time by Brandon Lum and @[email protected] spdx.lfprojects.linuxfoundation.org/providing-tran…

Fun! A think tank analysis combines my passion for both Taylor Swift and #SBOM. Nice job by DFRLab - @dfrlab.bsky.social & Atlantic Council Cyber Statecraft for unpacking some of the common (and dare we say imperfect) concerns about SBOM from beltway lobbyists. dfrlab.org/2023/07/19/why…


Cisco announces SBOMs for recent @cisco products. Great Jeff Schutt blog highlighting 1) the importance of transparency, 2) acknowledging that #SBOM implementation will be a journey, but that 3) we all have to start now for better #supplychain security blogs.cisco.com/security/demon…

