Overview
Published a comprehensive whitepaper on software supply chain security, covering SBOM generation, dependency analysis, and vulnerability management across the software development lifecycle.
Key Contributions
- Proposed a unified framework for supply chain risk assessment
- Analyzed 500+ open source projects for dependency hygiene
- Developed scoring methodology for supply chain maturity
Abstract
Modern software development relies heavily on third-party components, creating complex supply chains that are difficult to secure. This paper presents a practical framework for organizations to assess, monitor, and improve their software supply chain security posture.
