OpenChain-Project / Security-Assurance-Specification

Other
21 stars 7 forks source link

Update openchain-security-specification-2.0.md #37

Closed shanecoughlan closed 2 months ago

shanecoughlan commented 3 months ago

3.3.2 - Security Assurance

A process shall exist to detect, identify, and document the existence of Known Vulnerabilities in each Open Source Software component on the Software Bill of Materials (SBOM) for the Supplied Software.

To

3.3.2 - Security Assurance

A process shall exist to detect, identify, and document the existence of Known Vulnerabilities in each Open Source Software component in the Software Bill of Materials (SBOM) for the Supplied Software.

Signed-off-by: Shane Coughlan scoughlan@linuxfoundation.org