Multiple efforts between government and industry are attempting to define Software Transparency. Some of these efforts will lead to increased compliance or regulatory requirements. Software Transparency is often achieved through the publishing of bill-of-materials (BOM). A BOM is synonymous to the list of ingredients in a recipe. Both are an implementation of transparency.
There are multiple SBOM standards including CycloneDX, SPDX, and SWID, each having their own strengths and use-cases they were designed to solve.
Security Reviewer Ecosystem support all those standards.
COPYRIGHT (C) 2015-2023 SECURITY REVIEWER SRL. ALL RIGHTS RESERVED.