Software Bill of Materials (SBOM): The Gateway Drug to Supply Chain Security

TL;DR: In today's world, SBOMs are littered with misinformation, almost always missing details, and are useless on their own.

I've found that most CramHacks subscribers are developers and security engineers. But very few are deeply involved in the supply chain security space, and I'm getting tired of telling everyone that producing an SBOM on its own does squat for security.

I'm not anti-SBOM, just anti-hype - and right now, SBOMs are all hype.

[https://www.cramhacks.com/p/sbom-gateway-drug-to-supply-chain](https://www.cramhacks.com/p/sbom-gateway-drug-to-supply-chain)

If you are interested in learning …

bill cybersecurity developers drug engineers found gateway materials misinformation missing own sbom sboms security software software bill of materials space subscribers supply supply chain supply chain security today useless world