Hackernews posts about SBOMs

  1. Beyond SBOMs: The Real Gaps in Software Supply Chain Transparency
    1 points by scanosss 12 days ago | discuss
  2. Using SBOMs to detect possible Dependency Confusion (protsenko.dev)
    1 points by protsenko 17 days ago | discuss
  3. Show HN: GemGuard: Ruby gem to scan and auto-fix vulnerable dependencies (github.com)
    3 points by wilburhimself 13 days ago | discuss
  4. Show HN: GemGuard: Ruby gem to scan and auto-fix vulnerable dependencies (github.com)
    2 points by wilburhimself 12 days ago | discuss
  5. Show HN: SBoMPlay – Client side SBoM explorer (cyfinoid.github.io)
    2 points by anantshri 25 days ago | discuss
  6. SBoM Workbench v1.19 is out
    1 points by scanosss 9 days ago | discuss
  7. ReARM Announces Alerts on SBoM Dependency Changes (github.com)
    1 points by taleodor 13 days ago | discuss
  8. Show HN: Stasher – Burn-after-read secrets from the CLI, no server, no trust (github.com)
    72 points by stasher-dev 17 days ago | 55 comments
  9. Show HN: Provability Fabric – From Guardrails to Guarantees for AI Agents
    3 points by MADEinPARIS 6 days ago | 1 comments
  10. Show HN: Provability Fabric – Proof-carrying behavior for AI agents
    2 points by MADEinPARIS 5 days ago | discuss
  11. Show HN: Free and open source web site and server monitoring tool (github.com)
    1 points by serozkan 13 days ago | 1 comments
  12. Yocto, RockPi and SBOMs: Building modern embedded Linux images (vpetersson.com)
    161 points by mvip 6 months ago | 123 comments
  13. SBOMs Remain, Attestations Out – Amendments to Executive Order 14144 (rearmhq.com)
    11 points by taleodor 3 months ago | discuss
  14. SBOMs for Medical Devices (2023) (danacrane.medium.com)
    4 points by mooreds about 2 months ago | discuss
  15. Show HN: Xbom – Generate AI and SaaS-Aware SBOMs from Code Using Static Analysis (github.com)
    3 points by abhisek 2 months ago | discuss
  16. C SBOMs, and how pkgconf can solve this problem (ariadne.space)
    3 points by todsacerdoti 7 months ago | discuss
  17. Why Most SBOMs Fail and What to Do About It (ovalenzuela.com)
    2 points by Tomte about 2 months ago | discuss
  18. Socket Joins TC54 to Help Shape the Future of SBOMs, CycloneDX, and PURL (socket.dev)
    2 points by feross 7 months ago | discuss
  19. Firmware SBoMs for open source projects (blogs.gnome.org)
    2 points by JNRowe 9 months ago | discuss
  20. Show HN: Pre-alpha tool for analyzing spdx SBOMs generated by GitHub (github.com)
    2 points by mnahkies over 1 year ago | discuss
  21. SPDX: Open SBOMs Standard (spdx.dev)
    2 points by nateb2022 over 1 year ago | discuss
  22. Generating SBOMs Remotely with a Hardware Root of Trust (edgebit.io)
    2 points by robszumski over 1 year ago | discuss
  23. Easily generate SBOMs for every container build with Depot (depot.dev)
    2 points by jacobwg almost 2 years ago | discuss
  24. Show HN: Manage SBOMs like source code (github.com)
    1 points by miraculixx 12 months ago | 1 comments
  25. Bringing Together SBOMs and Advisories (github.com)
    1 points by giamma about 2 months ago | discuss
  26. Rust Will Explode, SBOMs Will Be Duds: Open-Source Predictions (thenewstack.io)
    1 points by gpi 8 months ago | discuss
  27. Comprehensive Guide to Generating and Understanding SBOMs with Docker and Djang (sbomify.com)
    1 points by todsacerdoti about 1 year ago | discuss
  28. Using a Hardware Root of Trust to Generate Trustworthy SBOMs (edgebit.io)
    1 points by robszumski over 1 year ago | discuss
  29. Show HN: CLI that spots fake GitHub stars, risky dependencies and licence traps (github.com)
    122 points by artski 3 months ago | 72 comments
  30. Show HN: SecureBuild – Zero-CVE Images That Pay OSS Projects (securebuild.com)
    40 points by grantlmiller 2 months ago | 17 comments
  31. Show HN: I'm building a simple way to package, collaborate, and deploy ML models (kitops.ml)
    9 points by jesserwilliams over 1 year ago | discuss
  32. Opentemplate – FOSS Python template –> ease, security, SOTA tooling (github.com)
    2 points by opennudge 2 months ago | discuss
  33. Show HN: SCANOSS Now Scans Container Images
    2 points by scanosss 3 months ago | discuss
  34. Show HN: Compliant SBOM Management per US Senate Directive
    2 points by daudmalik06 almost 2 years ago | discuss
  35. Show HN: Open-Source Security Monitoring with AI and License Compliance
    1 points by daudmalik06 8 months ago | 1 comments
  36. Show HN: Parent Docker Image Transparency And Daily Pull Request Compliance (github.com)
    1 points by kcrane3576 9 months ago | discuss
  37. Using Linux IMA with eBPF to protect a workload from supply chain risk (edgebit.io)
    15 points by robszumski over 1 year ago | 4 comments
  38. New Python Packaging Proposal Aims to Solve Phantom Dependency Problem With (socket.dev)
    2 points by feross 8 months ago | discuss
  39. What's Your C/C++ Code Made Of? The Importance of the Software Bill of Materials (blog.conan.io)
    1 points by ibobev 7 months ago | discuss
  40. Firmware Software Bill of Materials (SBoM) Proposal (uefi.org)
    126 points by rwmj almost 2 years ago | 73 comments
  41. Open source projects could sell SBOM fragments (www.thomas-huehn.com)
    113 points by Tomte 6 months ago | 62 comments