Tags: Cyber Supply Chain Management and Transparency Act, oss, H.R. 5793, governance, government open source software (GOSS), Sonatype Says, SDLC, component vulnerability, open source governance, Nexus, open source components, open source governance policy, Cyber Chain Integrity Act, application supply chain management, Everything Open Source, open source software supply chain, Open Source, Cyber Supply Chain, Application Security, bill of materials (of 3rd party and open source co, clm, cyber supply chain management, Software supply chain management, AppSec Spotlight, appdev
Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759
Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102
Australia Office - 5 Martin Place, Level 14, Sydney 2000, NSW, Australia
London Office - 1 Primrose St, London EC2A 2EX
Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.