Hackernews posts about SBOMs

SBOMs Remain, Attestations Out – Amendments to Executive Order 14144 (rearmhq.com)

11 points by taleodor 9 days ago | discuss
Show HN: SCANOSS Now Scans Container Images

2 points by scanosss 20 days ago | discuss
Show HN: I Built Xkema to Fix the Mess of Hardware Design Docs (xkema-app-j9pia.ondigitalocean.app)

2 points by Nadssat 14 days ago | discuss
Yocto, RockPi and SBOMs: Building modern embedded Linux images (vpetersson.com)

161 points by mvip 4 months ago | 123 comments
C SBOMs, and how pkgconf can solve this problem (ariadne.space)

3 points by todsacerdoti 4 months ago | discuss
Socket Joins TC54 to Help Shape the Future of SBOMs, CycloneDX, and PURL (socket.dev)

2 points by feross 5 months ago | discuss
Firmware SBoMs for open source projects (blogs.gnome.org)

2 points by JNRowe 7 months ago | discuss
Show HN: Pre-alpha tool for analyzing spdx SBOMs generated by GitHub (github.com)

2 points by mnahkies about 1 year ago | discuss
SPDX: Open SBOMs Standard (spdx.dev)

2 points by nateb2022 over 1 year ago | discuss
Generating SBOMs Remotely with a Hardware Root of Trust (edgebit.io)

2 points by robszumski over 1 year ago | discuss
Easily generate SBOMs for every container build with Depot (depot.dev)

2 points by jacobwg over 1 year ago | discuss
Show HN: Manage SBOMs like source code (github.com)

1 points by miraculixx 9 months ago | 1 comments
Rust Will Explode, SBOMs Will Be Duds: Open-Source Predictions (thenewstack.io)

1 points by gpi 6 months ago | discuss
Comprehensive Guide to Generating and Understanding SBOMs with Docker and Djang (sbomify.com)

1 points by todsacerdoti about 1 year ago | discuss
Using a Hardware Root of Trust to Generate Trustworthy SBOMs (edgebit.io)

1 points by robszumski over 1 year ago | discuss
An end-of-life (EOL) package scanner for container images, systems, and SBOMs (github.com)

1 points by mooreds almost 2 years ago | discuss
Show HN: CLI that spots fake GitHub stars, risky dependencies and licence traps (github.com)

122 points by artski about 1 month ago | 72 comments
Show HN: I'm building a simple way to package, collaborate, and deploy ML models (kitops.ml)

9 points by jesserwilliams about 1 year ago | discuss
Show HN: Compliant SBOM Management per US Senate Directive

2 points by daudmalik06 over 1 year ago | discuss
Show HN: Open-Source Security Monitoring with AI and License Compliance

1 points by daudmalik06 6 months ago | 1 comments
Show HN: Parent Docker Image Transparency And Daily Pull Request Compliance (github.com)

1 points by kcrane3576 7 months ago | discuss
Using Linux IMA with eBPF to protect a workload from supply chain risk (edgebit.io)

15 points by robszumski over 1 year ago | 4 comments
New Python Packaging Proposal Aims to Solve Phantom Dependency Problem With (socket.dev)

2 points by feross 5 months ago | discuss
What's Your C/C++ Code Made Of? The Importance of the Software Bill of Materials (blog.conan.io)

1 points by ibobev 4 months ago | discuss
Firmware Software Bill of Materials (SBoM) Proposal (uefi.org)

126 points by rwmj over 1 year ago | 73 comments
Open source projects could sell SBOM fragments (www.thomas-huehn.com)

113 points by Tomte 4 months ago | 62 comments
SBoM – Not So Static After All (worklifenotes.com)

4 points by taleodor about 1 month ago | discuss
Dependency-Track: Software Bill of Materials (SBoM) Analysis (dependencytrack.org)

3 points by stefankuehnel 5 months ago | discuss
Show HN: Minefield – Fast SBOM Management, 10k Packages Cached in 30s (github.com)

2 points by snaveen 9 months ago | discuss
SBoM Support in Rust (ferrous-systems.com)

2 points by ingve 11 months ago | discuss
Switching Xilinx / AMD Kria K24 and K26 SoMs [video] (www.youtube.com)

2 points by signalhound over 1 year ago | discuss
Curl is seen everywhere except your SBOM, why is it missing? (zebracatzebra.com)

2 points by donutshop over 1 year ago | discuss
Show HN: ReARM – SBOM / xBOM and Release Manager (github.com)

1 points by taleodor 2 months ago | 1 comments