Chapter

Software BoM at the time of DevOps (and DevSecOps .. and VSM …)

with Manuel Schuller

Description:

The BoM is not necessarily anymore only “the knowledge needed to recreate a particular release”. Or, at least, in the world of DevOps, it has become something like “all of the environment information, tools, and specific branch and version of the software built, typically stored in an escrow account”. But also, in the connected world of DevSecOps, shouldn’t the BoM include the results, at a certain moment (the moment of the release), of all security results matching the state of the art? We will discuss these aspects, and others like the purpose of the BoM, in this session open to questions, discussions and contributions.

Join the Community!

If you haven’t joined the Discord community, please do so! You can find us on Discord at: https://devseccon.io/discordcommunity

Tags:

Manuel Schuller

DevOps-ologist, Business and Technical Challenges Solver

About Manuel Schuller

Manuel is a senior DevOps evangelist, with a 20+ years international experience on both Dev and Ops solutions. Public Speaker (in events like DevOps World, DevOps Enterprise Summit, and BrightTalk’s and TechStrong’s programs and broadcasts), Business and Technical Challenges Solver.

Loving the terms “DevOps-ifier” and “DevOps-ologist”, with an excellent knowledge of both technologies and markets, he helps people practice DevOps principles in real world organizations, and achieve results in big DevOps transitions projects.

Outside of DevOps he is a member of the BIEN (Basic Income European Network), and a registered supporter of the Italian CDTI (Club Dirigenti Tecnologie dell’Informazione) and SiFPA (Simple Function Point Association, now in IFPUG).