SBOM

What’s in a Name? Vulnerabilities, SBOMs, and the Challenge of Software Identity - Justin Murphy - YouTube

Reflections on Trusting VEX (or when humans can improve SBOMs)

6 Predictions for the Future of SBOM and Software Supply Chain Security

Google Online Security Blog: SBOM in Action: finding vulnerabilities with a Software Bill of Materials

[SBOMs are just a means to an end Endor Labs](https://www.endorlabs.com/blog/sbom-is-just-a-means-to-an-end)

The case for a SaaS bill of materials - by Walter Haydock

Navigating SBOMs and Supply Chain Security Transparency on Vimeo

https://ntia.gov/files/ntia/publications/howto_guide_for_sbom_generation_v1.pdf

https://ntia.gov/files/ntia/publications/ntia_sbom_framing_2nd_edition_20211021.pdf

[SBOMs: What they are and why organizations need them VentureBeat](https://venturebeat.com/2022/07/29/sboms-what-they-are-and-why-organizations-need-them/)

Not All SBOMs Are Created Equal

Dealing with Multiple SBOMs

[How SLSA and SBOM can help healthcare resiliency Google Cloud Blog](https://cloud.google.com/blog/products/identity-security/how-slsa-and-sbom-can-help-healthcare-resiliency)

TODO JupiterOne post about it