What's in the SOSS? An OpenSSF Podcast cover image

What's in the SOSS? An OpenSSF Podcast

Stacklok's Adolfo García Veytia Digs Into SBOMs and VEX

Jun 18, 2024
Adolfo García Veytia, a Staff Software Engineer at Stacklok, delves into the importance of SBOMs, VEX projects, and standards in the software supply chain. He shares insights on open source contributions, communication tools, and advice for aspiring professionals.
18:11

Podcast summary created with Snipd AI

Quick takeaways

  • Software Bill of Materials (S-BOM) enhances software transparency and informed decision-making for developers and consumers.
  • S-BOM standards like SPDX and Seq1DX, along with tools like Protobomb, streamline efficient management of S-BOM data.

Deep dives

Importance of Software Bill of Materials (S-BOM)

Software Bill of Materials (S-BOM) is crucial for transparency in the software supply chain, providing a detailed list of the components within a software. It enables developers and consumers to make informed decisions regarding the software they use, especially when incorporating third-party components. S-BOM serves as the foundation for a transparent supply chain, akin to knowing the ingredients of a meal before consuming it.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner