SBOM has been a topic of discussion for several years and now that US Government agencies will be authorized to request an SBOM from software vendors starting next year the software vendor community is expressing opposition and spreading disinformation. The article linked below (Read More button) offers a reasonable view of SBOM and its usefulness as a tool to help consumers find software vulnerabilities in their systems and devices.
I'm looking forward to meeting colleagues working on supply chain policies and practices for the electric industry at this December 7 FERC-DOE supply chain technical conference at FERC on December 7. Please come out and show your support for SBOM at the conference on 12/7 hosted at FERC HQ in Washington, DC and please introduce yourself.