Generating SPDX Software Bill of Materials with Yocto Project
Offered By: Yocto Project via YouTube
Course Description
Overview
Learn how to generate a Software Bill of Materials (SBOM) using the SPDX standard format with the Yocto Project in this 15-minute presentation. Discover practical details on utilizing the "create-spdx" class, introduced in Yocto Project version 3.4 ("Honister"), to produce SBOMs for license compliance and security vulnerability assessments. Gain insights into using the class effectively, understanding associated variables, and controlling the output SPDX content and volume without delving into code or generated files. Benefit from the presenter's expertise to quickly grasp this essential tool for device manufacturers and end users.
Syllabus
Bitbaking SPDX SBoM, Michael Opdenacker
Taught by
Yocto Project
Related Courses
Target Rich Cyber PoorBSidesLV via YouTube The A's, B's, and Four C's of Testing Cloud-Native Applications
LASCON via YouTube SBOM Challenges and How to Fix Them
BSidesLV via YouTube The Case for Software Bill of Materials
BSidesLV via YouTube Collaborating to Improve Open Source Security - How the Ecosystem Is Stepping Up
RSA Conference via YouTube