SBOMs are no longer mandatory for federal agencies. New guidance rescinds prior software supply chain mandates and shifts to agency-defined risk assessment.
Details → https://socket.dev/blog/federal-government-rescinds-software-supply-chain-mandates-makes-sboms-optional #Cybersecurity #GovTech
