Hackernews posts about SBOMs

  1. SBOM Adoption on PyPI Is at 1.58%. We Can Do Better (sbomify.com)
    2 points by mvip 26 days ago | discuss
  2. Show HN: Riventa.Dev – AI-native DevOps that acts, not just alerts (www.riventa.dev)
    3 points by christopherAs 27 days ago | discuss
  3. ReleaseGuard – scan and harden your dist/ before it ships (open source)
    3 points by Helixar 27 days ago | discuss
  4. Show HN: Shared team context for AI coding sessions with ambient intelligence (github.com)
    2 points by torrienaylor about 20 hours ago | discuss
  5. Show HN: Splice CAD – Wiring and cable assembly CAD with an agentic assist (splice-cad.com)
    3 points by djsdjs 1 day ago | discuss
  6. Yocto, RockPi and SBOMs: Building modern embedded Linux images (vpetersson.com)
    161 points by mvip about 1 year ago | 123 comments
  7. Could lockfiles just be SBOMs? (nesbitt.io)
    77 points by zdw 4 months ago | 62 comments
  8. SBOMs Remain, Attestations Out – Amendments to Executive Order 14144 (rearmhq.com)
    11 points by taleodor 10 months ago | discuss
  9. Determinate Secure Packages: Nixpkgs with SBOMs, FIPS, and SLA'd CVE Patching (determinate.systems)
    5 points by grhmc 3 months ago | 1 comments
  10. SBOMs for Medical Devices (2023) (danacrane.medium.com)
    4 points by mooreds 9 months ago | discuss
  11. Show HN: Xbom – Generate AI and SaaS-Aware SBOMs from Code Using Static Analysis (github.com)
    3 points by abhisek 10 months ago | discuss
  12. C SBOMs, and how pkgconf can solve this problem (ariadne.space)
    3 points by todsacerdoti about 1 year ago | discuss
  13. The Supply Chain in Your AI Agent: Why SBOMs for MCP Servers Matter Now (www.incredibuild.com)
    2 points by zozo123-IB about 1 month ago | discuss
  14. Opinionated GitHub Action for generating high-quality SBOMs (github.com)
    2 points by todsacerdoti 2 months ago | discuss
  15. Why Most SBOMs Fail and What to Do About It (ovalenzuela.com)
    2 points by Tomte 10 months ago | discuss
  16. Socket Joins TC54 to Help Shape the Future of SBOMs, CycloneDX, and PURL (socket.dev)
    2 points by feross about 1 year ago | discuss
  17. Firmware SBoMs for open source projects (blogs.gnome.org)
    2 points by JNRowe over 1 year ago | discuss
  18. Show HN: Pre-alpha tool for analyzing spdx SBOMs generated by GitHub (github.com)
    2 points by mnahkies almost 2 years ago | discuss
  19. Show HN: Hatch v1.16.0 – workspaces, dependency groups and SBOMs (hatch.pypa.io)
    1 points by ofek 4 months ago | 1 comments
  20. Show HN: Manage SBOMs like source code (github.com)
    1 points by miraculixx over 1 year ago | 1 comments
  21. Show HN: Firmware GRC tool that generates OSCAL and SBOMs for 122 controls (www.usenabla.com)
    1 points by jdbohrman 7 months ago | discuss
  22. Beyond SBOMs: The Real Gaps in Software Supply Chain Transparency
    1 points by scanosss 8 months ago | discuss
  23. Using SBOMs to detect possible Dependency Confusion (protsenko.dev)
    1 points by protsenko 8 months ago | discuss
  24. Bringing Together SBOMs and Advisories (github.com)
    1 points by giamma 9 months ago | discuss
  25. Rust Will Explode, SBOMs Will Be Duds: Open-Source Predictions (thenewstack.io)
    1 points by gpi over 1 year ago | discuss
  26. Comprehensive Guide to Generating and Understanding SBOMs with Docker and Djang (sbomify.com)
    1 points by todsacerdoti almost 2 years ago | discuss
  27. Show HN: CLI that spots fake GitHub stars, risky dependencies and licence traps (github.com)
    122 points by artski 11 months ago | 72 comments
  28. Show HN: SecureBuild – Zero-CVE Images That Pay OSS Projects (securebuild.com)
    40 points by grantlmiller 10 months ago | 17 comments
  29. Show HN: GemGuard: Ruby gem to scan and auto-fix vulnerable dependencies (github.com)
    3 points by wilburhimself 8 months ago | discuss
  30. Show HN: DepGuard – Local dependency audit and license compliance (10 pkg mgrs) (github.com)
    2 points by suhteevah about 2 months ago | discuss
  31. Show HN: SBoM dashboard that pulls from GitHub release assets (sbom.kftray.app)
    2 points by hcavarsan 2 months ago | discuss
  32. Scanoss GitHub Actions Adds Dependency Track Integration
    2 points by scanosss 7 months ago | discuss
  33. Show HN: GemGuard: Ruby gem to scan and auto-fix vulnerable dependencies (github.com)
    2 points by wilburhimself 8 months ago | discuss
  34. Opentemplate – FOSS Python template –> ease, security, SOTA tooling (github.com)
    2 points by opennudge 10 months ago | discuss
  35. Show HN: SCANOSS Now Scans Container Images
    2 points by scanosss 10 months ago | discuss