> I don’t understand why people are so afraid of SBOM. It’s just a text file. WAZZUP with that.
I think we all know what people are afraid of - that they have no institutional control over how their software is made and have no confidence they can automate producing even an accurate dependency list without large process changes. On Wed, Nov 30, 2022 at 2:35 PM Dick Brooks < [email protected]> wrote: > https://insidecybersecurity.com/share/14118 > > > > Wow, some people seem to think this “SBOM thing” looks like the birthchild > of communism and the black plague. > > > > I don’t understand why people are so afraid of SBOM. It’s just a text > file. WAZZUP with that. > > > > Allan, looking forward to seeing you on 12/7 at FERC. I filed my testimony > today which is very supportive of SBOM, as you can imagine. > > > > Thanks, > > > > Dick Brooks > > > > *Active Member of the CISA Critical Manufacturing Sector, * > > *Sector Coordinating Council – A Public-Private Partnership* > > > > *Never trust software, always verify and report! > <https://reliableenergyanalytics.com/products>* ™ > > http://www.reliableenergyanalytics.com > > Email: [email protected] > > Tel: +1 978-696-1788 <(978)%20696-1788> > > > > > -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#4863): https://lists.spdx.org/g/Spdx-tech/message/4863 Mute This Topic: https://lists.spdx.org/mt/95366174/21656 Group Owner: [email protected] Unsubscribe: https://lists.spdx.org/g/Spdx-tech/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
