Heise Medien on Mastodon

0 Beiträge0 Beteiligte0 Beiträge heute

anchoreSBOMs are more than an inventory—they're a critical tool for securing modern software development. Our latest guide breaks down @SBOM fundamentals, key standards like <a href="https://mstdn.business/tags/SPDX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPDX</a> and <a href="https://mstdn.business/tags/CycloneDX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CycloneDX</a>, and real-world use cases for security, compliance, and DevSecOps. Download now <a href="https://get.anchore.com/sbom101-guide-for-devsecops-community/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://get.anchore.com/sbom101-guide-for-devsecops-community/</a>

Till KamppeterThe <a href="https://ubuntu.social/tags/LinuxFoundation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LinuxFoundation</a> is accepted as mentoring organization in the Google Summer of Code <a href="https://ubuntu.social/tags/GSoC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GSoC</a> <a href="https://ubuntu.social/tags/GSoC2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GSoC2025</a>!Amazing project ideas are waiting for awesome contributors: From <a href="https://ubuntu.social/tags/OpenPrinting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenPrinting</a>, <a href="https://ubuntu.social/tags/Zephyr" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Zephyr</a>, Automotive Grade Linux <a href="https://ubuntu.social/tags/AGL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AGL</a>, Industrial I/O <a href="https://ubuntu.social/tags/IIO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IIO</a>, Sound Open Firmware <a href="https://ubuntu.social/tags/SOF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SOF</a>, <a href="https://ubuntu.social/tags/SPDX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPDX</a>, Automating Linux kernel workflows <a href="https://ubuntu.social/tags/kworkflow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kworkflow</a> <a href="https://summerofcode.withgoogle.com/programs/2025-ao/organizations/the-linux-foundation" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://summerofcode.withgoogle.com/programs/2025-ao/organizations/the-linux-foundation</a>Project ideas and how to apply: <a href="https://wiki.linuxfoundation.org/gsoc/google-summer-code-2025" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://wiki.linuxfoundation.org/gsoc/google-summer-code-2025</a>If interested to be a contributor or mentor contact us ASAP! Do not wait for the deadline.

anchoreAfter our first webinar introduction on <a href="https://mstdn.business/tags/SBOM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SBOM</a> basics, we are continuing our educational series with a deeper dive "Understanding SBOMs: Deep Dive with Kate Stewart". Topics include: - History of SBOM and the development of <a href="https://mstdn.business/tags/SPDX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPDX</a> - Are SBOMs only for <a href="https://mstdn.business/tags/license" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#license</a> <a href="https://mstdn.business/tags/compliance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#compliance</a>? - What role do SBOMs play when building systems with safety-critical considerations - How emerging tech like <a href="https://mstdn.business/tags/OSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OSS</a> <a href="https://mstdn.business/tags/LLMs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LLMs</a> can impact SBOM generation and analysis?Register Now <a href="https://get.anchore.com/deep-dive-with-kate-stewart/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://get.anchore.com/deep-dive-with-kate-stewart/</a>

Arch Linux :archlinux:New checks in <a href="https://fosstodon.org/tags/namcap" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#namcap</a> allow us to have an easier time adding <a href="https://fosstodon.org/tags/SPDX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPDX</a> compliant <a href="https://fosstodon.org/tags/license" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#license</a> identifiers for <a href="https://fosstodon.org/tags/packages" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#packages</a>! 🎉 <a href="https://lists.archlinux.org/hyperkitty/list/arch-dev-public@lists.archlinux.org/thread/NFSB7734U2VVDULPRY65ECXDE3XGNZXM/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lists.archlinux.org/hyperkitty/list/arch-dev-public@lists.archlinux.org/thread/NFSB7734U2VVDULPRY65ECXDE3XGNZXM/</a>The initial integration has been worked out in RFC0016: <a href="https://rfc.archlinux.page/0016-spdx-license-identifiers/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://rfc.archlinux.page/0016-spdx-license-identifiers/</a><a href="https://fosstodon.org/tags/ArchLinux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ArchLinux</a> <a href="https://fosstodon.org/tags/SPDX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPDX</a> <a href="https://fosstodon.org/tags/licenses" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#licenses</a> <a href="https://fosstodon.org/tags/packaging" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#packaging</a>

The Linux FoundationWe’re pleased to announce that the schedule is LIVE for Open Compliance Summit, taking place in Tokyo, Japan from Dec 7-8. The schedule includes sessions on <a href="https://social.lfx.dev/tags/SPDX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPDX</a>, <a href="https://social.lfx.dev/tags/SupplyChain" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SupplyChain</a> <a href="https://social.lfx.dev/tags/SBOMs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SBOMs</a>, <a href="https://social.lfx.dev/tags/copyright" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#copyright</a> + MORE. View the full schedule: <a href="http://bit.ly/3GkNZB4" rel="nofollow noopener noreferrer" translate="no" target="_blank">http://bit.ly/3GkNZB4</a>. <a href="https://social.lfx.dev/tags/OpenCompliance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenCompliance</a> <a href="https://social.lfx.dev/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a>

Fedora Project (F42 is OUT)Folks from Fedora and Red Hat have been working together on SPDX - "an open standard for communicating software bill of material information." Here's their presentation to the Fedora Council! <a href="https://www.youtube.com/watch?v=be0jfUCZM1M" rel="nofollow noopener noreferrer" target="_blank">https://www.youtube.com/watch?v=be0jfUCZM1M</a>This is important to Fedora because of our commitment to shipping only FOSS out of the box, but it also has implications in the enterprise. Good stuff! <a href="https://fosstodon.org/tags/Fedora" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Fedora</a> <a href="https://fosstodon.org/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> <a href="https://fosstodon.org/tags/SPDX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPDX</a>

Mike DolanDid you copy and paste the GPLv2? Which variation did you copy? 40+ variations exist on <a href="http://fsf.org" rel="nofollow noopener noreferrer" target="_blank">http://fsf.org</a> alone. This is another key reason to use <a href="https://fosstodon.org/tags/SPDX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPDX</a> Short Identifiers.<a href="https://www.youtube.com/watch?v=UM0oeJETSEo&t=5s" rel="nofollow noopener noreferrer" target="_blank">https://www.youtube.com/watch?v=UM0oeJETSEo&t=5s</a>

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#spdx