2023-02-06 –, Agora
Maintaining a comprehensive description of the Software Supply Chain has become increasingly important in software development today. As the industry has started to form around standardized mechanisms for reporting the Software Supply Chain via a Software Bill of Materials, OpenEmbedded has a unique position to be able to describe complex supply chains owing to the rich, complex, and comprehensive metadata it uses to build software.
In this talk, Joshua will describe why you need a SBoM, how to generate one with OpenEmbedded, what to do with it after it's created, and what the future of SBoMs in the project looks like.
Joshua is an Embedded Software Engineer with 14 years of experience who works for Garmin International. He has been working with OpenEmbedded for the past 7 years and is a member of the OpenEmbedded Technical Steering committee.