The Linux Foundation is hosting the first-ever “Supply Chain Town Hall” on August 18 from 6 – 10:30 am PDT (9 am – 1:30 pm EDT). Join this free virtual event to learn more from experts who have been working on how to solve these vulnerabilities for almost a decade, to find out how to best protect your supply chain and mitigate potential disaster. To learn more about the event, visit the main Supply Chain Town Hall website.
Steve Winslow, VP of Compliance & Legal at The Linux Foundation, will be giving a presentation titled,” Generating SBOMs for IoT at Build Time” that will include Zephyr RTOS.
In this talk, Steve will discuss a recent addition to the build tooling for Zephyr, a C-language open source real-time embedded operating system. This added feature enables distributions of Zephyr to generate an SPDX SBOM for their particular configuration automatically at the time of build. Steve will also discuss how this functionality leverages existing aspects of the Zephyr build process to record data about which particular source files are compiled and linked into the final Zephyr binary that is installed on the embedded device. I will also discuss lessons learned and considerations for other projects that may want to take similar approaches. Add this to your schedule here.
To learn more about the other sessions or to register for the event, click here: https://events.linuxfoundation.org/supply-chain-town-hall/.