Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Most recommendations treat SBOM as the “ingredients” and are he build dependencies such as GitHub Actions as the recipe.

However, I think the GitHub SBOM features include GitHub Actions as dependencies, but that is merely a side-effect of their Dependabot heritage.



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: