YoVDO

Utilizing Package-URLs for SBOM Management and Vulnerability Tracking

Offered By: Linux Foundation via YouTube

Tags

Software Composition Analysis Courses Vulnerability Management Courses Software Bill of Materials Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the critical aspects of Software Composition Analysis (SCA) and Software Bill of Materials (SBOM) management in this informative conference talk. Delve into the challenges of identifying and mapping components from supplier SBOMs to internal catalogs and policies. Learn about the importance of consistent software component identification for managing vulnerability risks. Discover how to leverage Package-URLs (PURLs) to standardize SBOM ingestion and automate policy application. Gain insights on utilizing VulnerableCode, a public database of open vulnerability data, to track FOSS vulnerabilities and VEXs using open-source tools and data.

Syllabus

What the &#% Is in That SBOM? How to Provide Users What Software Components Are... - Helio Castro,


Taught by

Linux Foundation

Tags

Related Courses

DevSecOps Fundamentals
Cybrary DevSecOps: Adding Security Testing Tools to Pipelines
Pluralsight Inspecting Open Source Software Packages for Security and License Compliance
Pluralsight Security Instrumentation - The Future of Software Security
LASCON via YouTube 5 Open Source Security Tools All Developers Should Know About
All Things Open via YouTube