-
Dependency-Track was recently evaluated against commercial vendors in a private
#SCA bakeoff. Hear from Steve Springett as he dives into his expectations for software supply-chain component analysis, the maturity of the SCA industry, and#SBOM and#SoftwareTransparency. https://twitter.com/edgeroute/status/1166818739842637824 … -
Looking at your code in the rear view mirror? What do you see?
#TechDebt that's what you see#softwaretransparency#software#Intelligence . Need help figuring it out?#QuantifyTechDebthttps://twitter.com/SemaSoftware/status/1149334256583348226 … -
Want to help guide future direction of our
#SBOM spec? Head over to https://cyclonedx.org and join the discussions on http://Groups.io where we’re designing dynamic dependency graphs among other things.#SoftwareTransparency#AppSec#OWASP#SCA#SCRM -
This is eye-opening! So pumped to share this!!
#SoftwareTransparency#duediligence#technicalduediligencehttps://twitter.com/SemaSoftware/status/1113079972833439744 … -
We’re droppin the
#SBOM and pleased to announce CycloneDX v1.1 is now available - in time for#RSAC New in this release: component pedigree (ancestors, descendants, variants, commits), external references, license improvements, future extensibility & more.#SoftwareTransparency -
CycloneDX BOM schema v1.1-DRAFT-2 has been published. http://cyclonedx.org/schema/bom-1.1-DRAFT-2.xsd … This draft supports SPDX expressions, license text and URL, and has minor corrections. There will be a final draft next week followed in the release on March 1.
#SBOM#SoftwareTransparency#AppSecpic.twitter.com/CY93YUWVaV
-
Join me as we chat about the business and security benefits of
#SoftwareTransparency and#SBOM over traditional approaches to#SCA. Looking forward to the demo as it’s both powerful and simple to implement in your own org.#AppSec#CSCRMhttps://twitter.com/AppSecCali/status/1083849784975417344 …
-
Come learn about emerging strategies for reducing
#opensource business and security risk,#SoftwareTransparency,#SBOM, and#OWASP@DependencyTrack. See you there! http://appseccalifornia2019.sched.com/event/GS4B/bom … Registration http://appseccalifornia2019.eventbrite.com , use 'HearMeAtAppSec20off' for 20% offpic.twitter.com/IrslbFXi9r
Prikaži ovu nit -
For peeps into
#supplychain risk when using third-party and#opensource components, check out https://www.owasp.org/index.php/Component_Analysis … Looking for feedback, possible omissions, and corrections.#SCA#CSCRM#SoftwareTransparency#CBOM#SBOM#BOM#AppSec#OWASPpic.twitter.com/gr7mbKPvcn
-
Did you miss the briefing on Software Bill of Materials, but still want to chat? Join a meet up today at 5pm in Mandalay or Friday at noon Caesar’s! Reply for location details.
#SBOM#SoftwareTransparency pic.twitter.com/TIHRxFrWE0
-
This one weird security trick could make secret government backdoors impossible http://boingboing.net/2016/03/10/using-distributed-code-signatu.html …
#SoftwareTransparency
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.