<p><span class="h-card" translate="no"><a href="https://mastodon.social/@mcc" class="u-url mention">@<span>mcc</span></a></span> the concept behind "SBOM"s is that you as a maintainer of some open source software is a part of the "software supply chain" in the same way that coltan is a part of the "electronics supply chain"; they make you more palatable to corporations so that you can be shoved into their processes more easily, whether you like it or not</p>
