Generating SPDX Software Bill of Materials with Yocto Project
Offered By: Yocto Project via YouTube
Course Description
Overview
Learn how to generate a Software Bill of Materials (SBOM) using the SPDX standard format with the Yocto Project in this 15-minute presentation. Discover practical details on utilizing the "create-spdx" class, introduced in Yocto Project version 3.4 ("Honister"), to produce SBOMs for license compliance and security vulnerability assessments. Gain insights into using the class effectively, understanding associated variables, and controlling the output SPDX content and volume without delving into code or generated files. Benefit from the presenter's expertise to quickly grasp this essential tool for device manufacturers and end users.
Syllabus
Bitbaking SPDX SBoM, Michael Opdenacker
Taught by
Yocto Project
Related Courses
SPDX 3.0 Overview - Introduction to Software Package Data ExchangeLinux Foundation via YouTube Software Part Catalog Management for Successful SBOM Creation
Linux Foundation via YouTube Our Journey to Open Source - From a Conservative Japanese Company
Linux Foundation via YouTube SW360 SBOM - Managing Vulnerability Information, SPDX Documents and Dependency Networks
Linux Foundation via YouTube OpenDataology: Fixing Dataset Licensing for AI - A Call to Arms
Linux Foundation via YouTube