Olivia
Online
Community meeting tomorrow at 5PM UTC! https://t.co/X8weNEgUsE
Dependency-Track: Open-source component analysis platform - https://t.co/efv12qA5Uf - #OpenSource @GitHub #GitHub #CyberSecurity @DependencyTrack #OWASP #SBOM #SaaSBOM #HBOM #VEX #SoftwareSupplyChain
We're honored that @defectdojo has chosen Dependency-Track as one of the top #opensource tools in the #SCA category this year.
Here's the press release with all the other great tools on the list.
https://t.co/CwK5MAazW6
#SBOM #CycloneDX #OWASP
Today, I attended a session on hashtag @DependencyTrack , where an interesting case study on @monzo Bank was presented by Michael Macnair. It highlighted how they transitioned from a traditional security approach to a more SBOM-driven software supply chain security model.
Monzo Bank's Journey to Software Supply Chain Security with SBOMs & Dependency-Track
🔍 Old Approach:
• No SBOM (Software Bill of Materials) generation.
• Security scans were done using proprietary scanners and in-house tools directly on the code.
🚀 New Approach:
• Started generating SBOMs using tools like Syft.
• Pushed these SBOMs to Dependency-Track, a popular SBOM management platform.
• Leveraged SBOM-driven security analysis for better visibility and risk management.
This shift not only improved their security posture but also helped them step into the world of modern software supply chain security, keeping eye on their third party components vulnerabilities, which was lacking in the old architecture.
This case study is a great example of how organizations can move beyond traditional scanning and embrace SBOMs for a more structured and proactive approach to security.
What are your thoughts on this transformation? Have you seen similar shifts in your organization or still waiting to shifts ? Let’s discuss! 🔍💡
Thanks to Michael Macnair for sharing...
#OWASP #OpenSource #CyberSecurity #SBOM #CycloneDX #DependencyTrack #SoftwareSupplyChainSecurity
Who to follow
AI Security Engineers
@aiseceng
Advancing AI security by uniting innovators, researchers, builders, and defenders to share insights on securing AI-powered and agentic applications.
CycloneDX SBOM Spec (OWASP)
@CycloneDX_Spec
OWASP CycloneDX is a modern standard for the software supply chain. Software Bill of Materials (SBOM), SaaSBOM, Cryptography (CBOM), AI/ML-BOM, VDR/VEX...
Syft
@SyftProject
Syft is an open source tool to generate a Software Bill of Materials (SBOM) from a container image or filesystem. Created and maintained by @Anchore.
Join our community meeting next Wednesday, 2nd April at 4-5PM UTC for a presentation from our friends at #Monzo Bank!
Learn how they replaced a proprietary vulnerability scanner with #CycloneDX
#SBOMs & DT.
Calendar: https://t.co/AsZdyT8tzA
Zoom: https://t.co/JQwRiKaUTs
OWASP Members change the world. Your membership helps shape the organization and drives our projects and community. If you are not a member or are due for renewal within 60 days, please join or renew today and get 10-25% off!
https://t.co/87vap2mFAl > Memberships > Apply
As a reminder, you can watch the recordings, and access the slides, of all previous meetings here: https://t.co/fdRkmSc297
The next community meeting will take place as per usual schedule on December 4th. See you there!
The team decided to skip this month’s community meeting, which was originally scheduled for tomorrow (Nov. 6th).
Since the last meeting, we released version 4.12.1 (https://t.co/0J5p0XOCDT). We’re aiming to release 4.12.2 in about a week’s time.
Join us in tomorrow's community meeting at 4PM UTC to learn about the new version 4.12.0, which is scheduled for release later today! https://t.co/3uxop6vebx
.@DependencyTrack is an open-source component analysis platform with a UI #madewithvuejs that helps you to identify & reduce risk in your software supply chain 🔍️ - https://t.co/RCevD1YBIX
Fantastic news for @QuarkusIO users! It's now easier than ever to generate accurate CycloneDX SBOMs for your applications. Massive kudos to the Quarkus team for the thoughtful and developer-friendly implementation!
We'd like to take this opportunity to thank the team at @IBM around Melba Lopez and Caroline Lee, who generously hosted all previous community meetings on their WebEx account. Thanks so much!
With the upcoming community meeting on Sept 4th, we're switching from WebEx to @owasp's Zoom. The calendar invite was updated accordingly.
If you imported the invite to a calendar app, please verify whether the Zoom details are present, and re-import the invite if they're not.
As usual, you can find the invite in the OWASP Software Supply Chain Community Calendar: https://t.co/YvgXFNxXEc
Couldn’t attend this week’s Dependency-Track community meeting? No0WPvVCRyLjwe’ve got the recording.
@nscur0 leads us through the project roadmap. We also have special guests from the CycloneDX #cryptography working group presenting #CBOM. Don’t miss it.
https://t.co/m1DBQ8iXOf
CBOMs are sexy, you know this right? So if you agree, you should attend the @CycloneDX_Spec meeting tomorrow where you'll learn all about how sexy they are
https://t.co/bn0wQuXzVc
Be a driving force in advancing the #OWASP Foundation's mission! Join us as a Corporate Supporter and create a meaningful impact with your support! 🌐🤝 https://t.co/kcmj4gAs4h #Cybersecurity #InfoSec #supportnonprofit #nonprofit #benefits #appsec #developers
Join us for our next community meeting on January 31st at 3PM UTC (10:00am U.S. Eastern)!
Agenda:
- Project / Release Update (~15 min)
- How IBM CISO uses Dependency-Track (~10 min)
- Q&A (~30 min)
Calendar invite:
https://t.co/J0lV8J3IrE
#OWASP #SBOM #CycloneDX #EO14028
Thank you SANS for this incredible honor. The Dependency-Track project would not be possible without our amazing community of maintainers, contributors, and the organizations that entrust #OWASP in helping reduce their supply chain risk. #SBOM #CycloneDX #EO14028
Open-Source Tool of the Year 💻 goes to the person or organization that created an open-source tool that is of significant value to the community.
This year, @DependencyTrack was the Community Winner! Congrats! #SANSDMA
Last Seen Users on Sotwe
jordan 
Seen from Philippines
รักเด็กนักเรียน🤍
Seen from Thailand
mizo sexy leak
Seen from United Arab Emirates
Concerned365
Seen from United Kingdom
𝗗𝗮𝗿𝗸 𝗯𝗿𝗮𝘇𝘇𝗲𝗿 🌚
Seen from Korea
Van dy
涼香⭐男の娘
Seen from Korea
Kontol bapak indo
Seen from Indonesia
Abc
Seen from Indonesia
DADDY & BOY
Seen from Turkey
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers