“SBOMs are no longer optional,” says the Linux Foundation’s Jim Zemlin, citing the “The State of Software Bill of Materials and Cybersecurity Readiness” report, which looks at organizational SBOM readiness and adoption in cybersecurity efforts.
Key findings from the report include:
- 82% of respondents are familiar with the term Software Bill of Materials (SBOM)
- 78% of organizations expect to produce or consume SBOMs in 2022, up 66% from the previous year
- 47% are currently producing or consuming SBOMs
Additionally, 62 percent of respondents are “looking for better industry consensus on how to integrate the production/consumption of SBOMs into their DevOps practices.”
The report, which was produced in partnership with OpenSSF, SPDX, and OpenChain, is the first in a series of research projects aimed at understanding “the challenges and opportunities” of securing open source software supply chains.
Comments