CycloneDX SBOM Spec (OWASP)(@CycloneDX_Spec) 's Twitter Profileg
CycloneDX SBOM Spec (OWASP)

@CycloneDX_Spec

OWASP CycloneDX is a modern standard for the software supply chain. Software Bill of Materials (SBOM), SaaSBOM, OBOM, VEX... https://t.co/cQHXsupTOu

ID:876881373755318274

linkhttps://cyclonedx.org/ calendar_today19-06-2017 19:16:25

664 Tweets

881 Followers

8 Following

Follow People
FOSSA(@getfossa) 's Twitter Profile Photo

A new version of the CycloneDX SBOM Spec (OWASP) (v 1.6) was released earlier this week, with several exciting added capabilities (including attestations). Software supply chain security and expert Tony Turner discusses the highlights on our blog.

fossa.com/blog/whats-new…

account_circle
Tech At Bloomberg(@TechAtBloomberg) 's Twitter Profile Photo

Read more about our team's efforts to advance software security standards development via Ecma International's TC54 in the latest announcement from @OWASP about 1.6
cyclonedx.org/news/cyclonedx…

Read more about our team's efforts to advance software security standards development via @EcmaIntl's TC54 in the latest announcement from @OWASP about #CycloneDX 1.6 cyclonedx.org/news/cyclonedx… #opensource
account_circle
CycloneDX SBOM Spec (OWASP)(@CycloneDX_Spec) 's Twitter Profile Photo

CycloneDX v1.6 now available with support for Cryptography Bill of Materials (CBOM), Attestations, and more. Explore whats new in the:

- Authoritative Guide to CBOM
- Authoritative Guide to Attesations
- Authoritative Guide to SBOM, Second Edition

cyclonedx.org/guides/

account_circle
CycloneDX SBOM Spec (OWASP)(@CycloneDX_Spec) 's Twitter Profile Photo

CycloneDX v1.6 has landed with support for tracking cryptographic assets and their dependencies for Post-Quantum Cryptography (PQC) readiness.

CycloneDX Attestations provides “compliance as code”

Enhancements to existing AI/ML support…



cyclonedx.org/news/cyclonedx…

account_circle
Apiiro(@ApiiroSecurity) 's Twitter Profile Photo

Join Apiiro and the OWASP® Foundation Foundation’s Global Board at next week’s NYC meetup!

Register for some amazing talks on CycloneDX SBOM Spec (OWASP), OWASP Nettacker, and !
meetup.com/owasp-new-york…

account_circle
Sam Stepanyan(@securestep9) 's Twitter Profile Photo

CycloneDX SBOM Spec (OWASP) If you missed the OWASP CycloneDX SBOM Spec (OWASP) community virtual meeting the recording is available on YouTube. Lear about the latest DependencyTrack updates and or Cryptography Bill of Materials in CycloneDx

youtube.com/watch?v=0WPvVC…

account_circle
nscur0(@nscur0) 's Twitter Profile Photo

Corcoran Smith Crash Override Sharing BOMs and associated docs is not the core competency of DT. Saying this as one of the maintainers of the project.

What the industry needs is not yet another service, what we need is a standardized protocol that multiple services (including DT) can eventually implement.

account_circle
Dependency-Track(@DependencyTrack) 's Twitter Profile Photo

Couldn’t attend this week’s Dependency-Track community meeting? No0WPvVCRyLjwe’ve got the recording.

nscur0 leads us through the project roadmap. We also have special guests from the CycloneDX working group presenting . Don’t miss it.

youtube.com/watch?v=0WPvVC…

account_circle
Sam Stepanyan(@securestep9) 's Twitter Profile Photo

Join the discussion on or Cryptography Bill of Materials at the upcoming OWASP CycloneDX SBOM Spec (OWASP) community virtual meeting at 5pm GMT (noon ET):

linkedin.com/events/depende…

account_circle
Daniel Cuthbert(@dcuthbert) 's Twitter Profile Photo

CBOMs are sexy, you know this right? So if you agree, you should attend the CycloneDX SBOM Spec (OWASP) meeting tomorrow where you'll learn all about how sexy they are

linkedin.com/events/depende…

CBOMs are sexy, you know this right? So if you agree, you should attend the @CycloneDX_Spec meeting tomorrow where you'll learn all about how sexy they are linkedin.com/events/depende…
account_circle
Semgrep(@semgrep) 's Twitter Profile Photo

🔒💡 Missed the OWASP Atlanta session? You're in luck! Dive into how FanDuel tackles code repository diversity with Semgrep and CycloneDX SBOM Spec (OWASP). Learn from real-world cases and embrace innovation in app security with David Volm. Watch now: youtube.com/watch?v=TJSIRa…

account_circle
Semgrep(@semgrep) 's Twitter Profile Photo

🗓️ Don't miss out! The @OWASPAtl meetup is TOMORROW (2/27) at FanDuel. Hear from AppSec Engineer David Volm about how FanDuel prevents and mitigates risks using Semgrep and CycloneDX SBOM Spec (OWASP). Sign up here: go.semgrep.dev/3HzKCWj Atlanta

account_circle
TC54(@EcmaTC54) 's Twitter Profile Photo

The recording of today’s TC54 meeting is available.
youtube.com/watch?v=2yb3T8…

To catch up on all previous TC54 meetings, visit youtube.com/playlist?list=…

account_circle
Semgrep(@semgrep) 's Twitter Profile Photo

🚨 Attention Atlanta-based InfoSec enthusiasts! Join us Feb 27 for the @OWASPAtl meetup at FanDuel. AppSec Engineer David Volm will share how FanDuel prevents and mitigates risks using Semgrep and CycloneDX SBOM Spec (OWASP). Sign up here: go.semgrep.dev/3HzKCWj

account_circle
Semgrep(@semgrep) 's Twitter Profile Photo

Are you interested in AppSec theory? Do you enjoy a good meme? Join David Volm at the Feb 27 @OWASPAtl meetup to discover how FanDuel, powered by Semgrep and CycloneDX SBOM Spec (OWASP), iterates relentlessly to transform challenges into opportunities. Sign up here: go.semgrep.dev/3HzKCWj

account_circle
Abhay Bhargav(@abhaybhargav) 's Twitter Profile Photo

Do you know what an MLBOM is?

MLBOM is Machine Learning Bill of Materials. This is very similar to what an SBOM is for software.

The MLBOM/AIBOM is meant to capture information about a machine learning model. Including information related to its intended use, its parent

account_circle
OWASP® Foundation(@owasp) 's Twitter Profile Photo

Be a driving force in advancing the Foundation's mission! Join us as a Corporate Supporter and create a meaningful impact with your support! 🌐🤝 owasp.org/supporters/pac…

Be a driving force in advancing the #OWASP Foundation's mission! Join us as a Corporate Supporter and create a meaningful impact with your support! 🌐🤝 owasp.org/supporters/pac… #Cybersecurity #InfoSec #supportnonprofit #nonprofit #benefits #appsec #developers
account_circle