


The Journey to Secure the Software Supply Chain at Microsoft

Microsoft open sources its software bill of materials (SBOM) generation tool

Generating Software Bills of Materials (SBOMs) with SPDX at Microsoft

Caesar, standards, and SAST: The road to SARIF

You can’t have security for DevOps until you have DevOps for security
