Produce Software Bill of Materials for Government implementation

owl-corp / thallium

MIT License

2 stars 0 forks source link

Produce Software Bill of Materials for Government implementation #10

Open jb3 opened 2 months ago

jb3 commented 2 months ago

Owl Corp has been contacted by a certain three letter agency wishing to use Thallium within their department duties, particularly their public outreach campaigns.

To comply with Government regulation, we are required to submit a Software Bill of Materials, henceforth referred to as (S-BOMB).

As you can see from our pnpm project on thallium-frontend, we have a standard JavaScript dependency count, which we will need to plant into the S-BOMB:

❯ pnpm list --depth 100 | wc -l
45734

Each of these dependencies require manual auditing of source code, as well as production of:

Project Name
Project Authors (ALL contributors)
Country of Production
License
X (Formerly Twitter) accounts of all Core Team Members
List of all subdependencies
Ties to any other three letter agencies

I am assigning our Public Relations Director who I have no doubt will be able to swiftly take care of this issue, and get us fully integrated with Uncle Sam.

jchristgit commented 2 months ago

Dear Colleague, thank you for assigning me on this issue.

Unfortnuately our printer has ran out of ink, and the backup plan - powered by D. M. as well as a fountain pen - ran out of a critical resource (orange juice), rendering it unusable.

I understand that our backup procedures should be tested, and I have ordered disciplinary measures against our Head Of Offline Copies (D. M.) as we, the C-level, believe that he should be blamed himself for this malicious act on our business.

Regarding the "S-BOMB", I have contracted a first draft. Please see below.

jchristgit commented 2 months ago

 / ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ \
|  /~~\                                   /~~\  |
|\ \   |       = THALLIUM =              |   / /|
| \   /|                                 |\   / |
|  ~~  |  The Thallium application       |  ~~  |
|      |  stands for civil rights,       |      |
|      |  moral rights, and the support  |      |
|      |  of guard dogs. We are proud    |      |
|      |  believers in a balanced        |      |
|      |  workforce, and contribute to   |      |
|      |  society by paying our taxes.   |      |
|      |                                 |      |
|      |  The Thallium application       |      |
|      |  consists of two parts,         |      |
|      |  backend and frontend. The      |      |
|      |  backend is a Python            |      |
|      |  application and powers the     |      |
|      |  frontend. The frontend is a    |      |
|      |  web application and powers     |      |
|      |  disappointment. Below a        |      |
|      |  screenshot of the frontend     |      |
|      |  application as browsed on a    |      |
|      |  modern browser (see "links     |      |
|      |  browser", 2024):               |      |
|      |                                 |      |
|      |      Hi, we've noticed you're   |      |
|      |  browsing with JavaScript       |      |
|      |  disabled.                      |      |
|      |      We are sorry, but we do    |      |
|      |  not support this at the time.  |      |
|      |      Please enable JavaScript   |      |
|      |  to use our site.               |      |
|      |                                 |      |
|      |  No further information is      |      |
|      |  available at this time.        |      |
|      |                                 |      |
 \     |~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|     /
  \   /                                   \   /
   ~~~                                     ~~~