An open standard for communicating software bill of material (SBOM) information, including components, licenses, copyrights, and security references.
Joined August 2017
- Tweets 125
- Following 124
- Followers 415
- Likes 978
Photos and videos
SPDX retweeted
4 Oct 2023
Join the #linux community on Oct. 11 for an #ELISASeminar that focuses on the Road to Safe Space Exploration presented by Ivan Perez Dominguez, Senior Research Scientist at @NASAAmes. Learn more & register: hubs.la/Q024fssH0 @ProjectElisa @NASA #opensource #ELISAProject
1
4
11
5,825
#SBOM alone may not encode enough detail to separate non-exploitable vulnerabilities from exploitable ones writes Surendra Pathak in our latest guest blog on VDR, VEX, OpenVEX & CSAF openssf.org/blog/2023/09/07/…
6
9
715
SPDX retweeted
Cisco announces SBOMs for recent @cisco products. Great @jefschut blog highlighting 1) the importance of transparency, 2) acknowledging that #SBOM implementation will be a journey, but that 3) we all have to start now for better #supplychain security blogs.cisco.com/security/dem…
1
13
28
2,347
.@SPDX_SBOM v3.0 is in the works, and it's expected to include several major changes from the current v2.3. Get an early look at what to expect — such as support for emerging BOM use cases like AI and data — in our new blog. #SBOM @SPDXTeam
fossa.com/blog/spdx-3-0/
6
8
1,104
SPDX retweeted
Fun! A think tank analysis combines my passion for both Taylor Swift and #SBOM.
Nice job by @DFRLab & @AtlanticCouncil @CyberStatecraft for unpacking some of the common (and dare we say imperfect) concerns about SBOM from beltway lobbyists.
dfrlab.org/2023/07/19/why-do…
6
13
1,656
SPDX retweeted
18 Jul 2023
Providing Transparency at Software Development’s core process: build time by @lumjjb and @_ctlfsh
spdx.lfprojects.linuxfoundat…
1
3
2
305
Excellent summary of what the team got up to during the SPDX Minisummit last month!
15 Jun 2023
Unpacking the SPDX 3.0 Tooling Mini Summit: A New Era of Compliance and Security spdx.dev/unpacking-the-spdx-…
1
3
196
SPDX retweeted
10 Jun 2023
I look forward to attending the SBOM-a-rama next week in Los Angeles, hosted by the
@CISAgov.
@theopenssf and @spdxteam believe SBOMs are a core part of securing our Open Source supply chain. Let me know if you'll be there!
cisa.gov/sbom-2023-agenda
2
4
183
If you don't submit a comment, the USPTO will make it easier and more profitable for patent trolls to target #opensource users with bogus claims.
7 Jun 2023
The USPTO has issued proposed rules that will make it harder for everyone in #opensource to challenge bad #patents. Let them know you want a fair and open system for all, where anyone can seek a review of an invalid patent.
Provide your comment: hubs.ly/Q01SLr490
4
9
1,268
SPDX retweeted
10 May 2023
4
13
513
SPDX retweeted
Excited to get the perspectives of @_kate_stewart and @chrisblask on what the world will look like when #SBOM is ubiquitous.
2
2
23
878
SPDX retweeted
24 Apr 2023
Software #supplychain transparency is emerging w/ #SBOMs. In this @RSAConference talk on April 25 at 9:40 am, @linuxfoundation's @_kate_stewart & @cybeatstech's @chrisblask present best practices that improve IP control, lower operational costs & more:
hubs.la/Q01MgNN80
2
5
659
📢bom v0.5.1 the @kubernetesio SPDX SBOM tool is out!
This release embeds the @SPDXTeam license list to generate SBOMs in airgapped envs, adds support for apk packages lots of bug fixes
Big thanks to @sbs0x @developerguyba @rosejudge5 and @comedordexis for contributing!
1
6
22
1,766
🎉Excited to see that an SPDX SBOM can now be generated by a push of an export button! Thanks for making things easier for all the open source developers on @github! Awesome work @jhutchings0
28 Mar 2023
Need an SBOM and not sure where to start? Now you can get an SBOM with the push of a button.
github.blog/2023-03-28-intro…
2
5
17
2,661
Get the latest on the SBOM Everywhere working group from @joshbressers and @_kate_stewart in this new @theopenssf blog post. #sbom #security #opensource
SBOM Everywhere Update and Python SPDX-Tools hubs.la/Q01Jjd140 #SBOM #SPDX #Python #OSS #OpenSource #OSSsecurity
1
4
206
SPDX retweeted
15 Feb 2023
Check out "Open Source Law Policy and Practice Book Panel" with Amanda Brock (@amandabrockUK), Jilayne Lovejoy (@jilaynelovejoy), Kate Stewart (@_kate_stewart ), Karen Sandler (@o0karen0o), Nithya Ruff (@nithyaruff) & Pamela Chestek (@pchestek) on YouTube! youtu.be/KaOE1J8ycJs
5
8
954
Joshua Watt from Garmin showcasing the upcoming @SPDXTeam build profile as part of his deep dive into build environment SBOMs in the @yoctoproject
4
16
2,389
SPDX retweeted
2 Feb 2023
If you're going to @OpenEmbeddedOrg's OE workshop on February 6 in Brussels, don't miss this talk by @Arm's Peter Hoyes about "Integrating #ZephyrRTOS using @yoctoproject." Learn more: hubs.la/Q01B51kg0 @ZephyrIoT #opensource #embedded #openembedded #RTOS
8
17
7,903