GigaTap articles tagged sbom.
- GitLab’s SBOM scanner shifts dependency triage toward exposure - GitLab 19.0 adds SBOM-based dependency scanning with transitive tracing, reachability signals, and policy enforcement. The useful part is not the SBOM labe
- Open Source Security as a Cost and Speed Advantage - Secure your open source supply chain to cut rework, lower incident costs, and help developers ship faster.
- OpenSSF’s April signal: make security artifacts operational - The April 2026 OpenSSF newsletter points to a clear shift: away from dead PDFs and one-time scans, toward runtime context, living SBOMs, and new AI-driven