SBOMs and firewalls are part of Sonatype’s focus on software supply chain security

When there’s a safety issue with a car or a child’s toy, the items usually get recalled and a fix is implemented. Some tech industry leaders are wondering why the same approach isn’t working for software.
Log4j is a widely used open-source tool used to collect diagnostics data from…

Source: siliconangle.com – Read more