Nerding Out With Viktor
チャンネル登録者数 647人
95 回視聴 ・ 1いいね ・ 2025/01/17
In this episode of Nerding Out with Viktor, host Viktor Petersson interviews Kate Stewart from the Linux Foundation and Gary O’Neall, a veteran SPDX contributor, about the history and evolution of the Software Package Data Exchange (SPDX). They discuss how SPDX originated as a solution for open-source license compliance and evolved to meet broader demands in security, vulnerability management, and regulatory compliance.
Kate and Gary share insights into the technical hurdles of generating accurate SBOMs, including dealing with circular dependencies and the complexities of incomplete software data. They offer practical examples, such as SBOM integration efforts within the Zephyr and Yocto projects, and highlight ongoing work to implement build-time SBOM generation for the Linux kernel. The conversation also addresses the challenges of maintaining compatibility with existing tools while expanding functionality for new use cases, particularly in safety-critical and CI/CD-driven environments.
The episode emphasizes SPDX’s open, community-driven approach and its growing relevance amid increasing regulatory requirements for software transparency and safety. By illustrating how SPDX supports compliance, security, and supply chain visibility, this discussion provides valuable insights for developers and organizations navigating the complexities of modern software development.
コメント
関連動画
1:03:56
Building and Scaling SBOM Programs: Navigating the Challenges for Effective Risk Management
828 回視聴 - 8 か月前
23:33
Transitioning from SEO to Automations with Samantha North | Episode #76 | Marketing Quacks Podcast
35 回視聴 - 12 日前
33:15
SBOM: Endlich Transparenz in der Supply-Chain von OT-Herstellern? | Florian Lukavsky
169 回視聴 - 11 か月前
39:10
To Be the Best Visionary, Be a Great Friend | Adam Kaplan | The Thunder Stock Show
5 回視聴 - 5 日前
27:03
Schiff Takes To Senate Floor to Lay Out Trump's 10 Most Corrupt Acts So Far
1,784,041 回視聴 - 2 日前
50:38
Inside the Yocto Project’s Evolving Tooling: SBOMs, SPDX 3.0, and Secure Embedded Systems
4,526 回視聴 - 10 日前
18:00
Trump Thanks Qatar for Their Generous Jet Bribe & Accidentally Does a Socialism | The Daily Show
6,154,331 回視聴 - 4 日前
16:59
Master SBOM Creation & Image Scanning for CKS Certification | Trivy & BOM CLI Explained
1,778 回視聴 - 4 か月前
40:08
EP. 307 - Analysing Ballarat’s Property Potential – The Pros, Pitfalls and Lifestyle Insights
31 回視聴 - 5 日前
26:15
VW’s €1.2B EV Plant Falters - Optimus is Dancing - Legacy Auto Crash in China - Cybercab incoming
15,999 回視聴 - 3 日前
使用したサーバー: direct
コメントを取得中...
関連動画
Building and Scaling SBOM Programs: Navigating the Challenges for Effective Risk Management
828 回視聴
Transitioning from SEO to Automations with Samantha North | Episode #76 | Marketing Quacks Podcast
35 回視聴
SBOM: Endlich Transparenz in der Supply-Chain von OT-Herstellern? | Florian Lukavsky
169 回視聴
To Be the Best Visionary, Be a Great Friend | Adam Kaplan | The Thunder Stock Show
5 回視聴
Experiential Learning to Develop True Faith with Virgil Tanner
29 回視聴
Schiff Takes To Senate Floor to Lay Out Trump's 10 Most Corrupt Acts So Far
178万 回視聴
Inside the Yocto Project’s Evolving Tooling: SBOMs, SPDX 3.0, and Secure Embedded Systems
4526 回視聴
Deep Dive into Supply Chain Compromise: Hospitality’s Hidden Risks
307 回視聴
Trump Thanks Qatar for Their Generous Jet Bribe & Accidentally Does a Socialism | The Daily Show
615万 回視聴
Master SBOM Creation & Image Scanning for CKS Certification | Trivy & BOM CLI Explained
1778 回視聴
EP. 307 - Analysing Ballarat’s Property Potential – The Pros, Pitfalls and Lifestyle Insights
31 回視聴
VW’s €1.2B EV Plant Falters - Optimus is Dancing - Legacy Auto Crash in China - Cybercab incoming
1.5万 回視聴
コメントを取得中...