Open Source Summit Japan 2022

Talk | Talk | map[SW360 SBOM:Managing Vulnerability Information, SPDX Documents, and New Dependency Network Between a Project and Software Components]

About the Session

In this session, Kouki Hama and Tien Le from Toshiba Corporation delve into the role of Software Bill of Materials (SBOM) in managing vulnerability information, SPDX documents, and understanding the new dependency network between software components and projects. The session covers essential open-source practices and strategies for effective dependency management in modern software development.

  • Session Highlights:
    • Overview of SBOM in vulnerability management
    • Understanding SPDX documents
    • Analyzing project-to-component dependency networks
  • For more details, visit the official session page.

Speakers

Kouki Hama

Kouki Hama

Software Engineering Researcher, Toshiba Corporation

Nishinomiya, Hyogo, Japan

T

Tien Le

Team Leader, Toshiba Corporation