Software bill of materials: What it is and why you need one
Most organizations that make software — from small startups to multi-billion-dollar behemoths — use third-party libraries and tools to develop their applications. Modern apps depend on many external components to build and deliver software to customers. These libraries and tools are collectively called the software supply chain. A software supply chain for a typical web app may include components like these.