Olle E. Johansson
LightNews LightNews
banner
oej.edvina.net
Olle E. Johansson
@oej.edvina.net
360 followers 65 following 12 posts
Consultant, developer, evangelist, gardener. Co-founder of SBOMEurope.eu. Team lead of OWASP Transparency Exchange API (Projekt Koala). Member of CycloneDX industry working group, OWASP SBOM Forum. IETF and much more.
Posts Replies Media Videos
oej.edvina.net
The OWASP Transparency Exchange API has published our first BETA release for implementors to start implementing the consumer API including the discovery.

Get all the docs including the #openapi specification here:

github.com/CycloneDX/tr...

#OWASP #TEA #SBOM #CYCLONEDX #SPDX
Release 0.1.0-beta.1 · CycloneDX/transparency-exchange-api
Tagging beta 1 again with correct version in OpenAPI spec
github.com
May 21, 2025 at 7:13 PM
Reposted by Olle E. Johansson
sbomeurope.eu
Zen of SBOM #2: "SBOM is not a single process to be completed. It's a lifecycle process".

What do you think? Discuss!

#SBOM #ZENSBOM #SPDX #CYCLONEDX
May 16, 2025 at 10:06 AM
oej.edvina.net
The global vulnerability intelligence project is making progress. We’re inviting to our first open meeting Tuesday May 20 at 16:00 CET. DM me to get a zoom invite or join the #CVE-wg slack channel in OWASP slack.

#CVE #NVD #ALLVD
May 14, 2025 at 6:22 PM
oej.edvina.net
A video recording of the webinar on a global vulnerability management platform is now available on YouTube. Let’s work together to build a strong multi-stakeholder platform. SBOMs need to be operational. Customers needs to know if they are safe or not.

#CVE #NVD #SBOM

youtu.be/zSsGLJTgWvU?...
CRA Mondays | Olle E. Johansson - The path to a global vulnerability management platform
YouTube video by Eclipse Foundation
youtu.be
April 30, 2025 at 6:13 AM
oej.edvina.net
If you have a few minutes to spare, why don't you listen to this chat about Software Bill of Materials with me and KeyFactor's Sven Rajala?

#SBOM #CyberSecurity

www.youtube.com/watch?v=Vqn9...
The Rise of Software Bill of Materials (SBOMs) – A Growing Necessity
YouTube video by Keyfactor Community
www.youtube.com
March 12, 2025 at 7:07 PM
oej.edvina.net
It's getting more and more urgent to build a global system for managing vulnerabilities in software. With new regulation, more vulnerabilities will have to be published and the pressure on the system will be much higher than today. We need to share the cost.

#CyberSecurity #CVE #NVD
March 5, 2025 at 1:13 PM
Reposted by Olle E. Johansson
orcwg.org
🌐 Approximately 75% of the software in use today contains open source code. If you manufacture, maintain, or steward open source software and are unclear how the CRA might impact you, check out the ORC Working Groups GitHub for discussions and resources.
#orcwg #opensource #cra hubs.la/Q037k2Jj0
February 24, 2025 at 10:00 AM
Reposted by Olle E. Johansson
sbomeurope.eu
Find us on YouTube or on Apple Podcasts to learn more about what we learned in Brussels during the EU Open Source Week and the great FOSDEM conference! All about SBOMs, CRA and much more. Anthony and Olle share their experiences and discuss the state of SBOMs.

www.youtube.com/watch?v=urDc...
SBOM Update February 2025: EU Open Source Week and FOSDEM
YouTube video by SBOM Europe
www.youtube.com
February 24, 2025 at 12:10 PM
oej.edvina.net
The OWASP CycloneDX team will be well represented at @fosdem.bsky.social ! We'll talk in the Security dev room and the SBOM dev room. Find us if you want to chat about CycloneDX, PURL, TEA or other CycloneDX projects.

#SBOM #CYCLONEDX #TEA #PURL

@cyclonedx.bsky.social @owasp.org
January 16, 2025 at 3:36 PM
Reposted by Olle E. Johansson
piotr.karwasz.org
Nice guide to navigate through all the events of the EU Open Source week.
Home - EU Open Source Week
opensourceweek.eu
January 8, 2025 at 1:54 PM
Reposted by Olle E. Johansson
sbomeurope.eu
Our guest this month is Jonathan Meadows, fellow at Citi and active in OpenSSF.
Join us and learn more about the path to a secure software supply chain with Software Bill of Materials as one of the core tools.

Register today!
sbomlive04.eventbrite.com

#SBOM #OPENSSF
January 8, 2025 at 9:03 AM
Reposted by Olle E. Johansson
sbomeurope.eu
Happy new SBOM year! We're starting the year by launching our first SBOM Academy tutorial with Anthony Harrison giving an Introduction to the Software bill of materials (SBOM).

If you have any ideas for tutorials, please do not hesitate to make a comment here!

youtu.be/az_HJJIA0a8?...

#SBOM
SBOM Academy: Introduction to the Software Bill of Materials (SBOM)
YouTube video by SBOM Europe
youtu.be
January 2, 2025 at 8:16 AM
Reposted by Olle E. Johansson
sbomeurope.eu
We wish all Happy SBOM Holidays! 2024 was the year we launched SBOM Europe and we're getting ready for even more activity during 2025. But first, a nice quiet period of relaxation, SBOM coding and joyful playing with new and old SBOM tools!

Happy holidays!
/Anthony and Olle
December 21, 2024 at 9:15 AM
oej.edvina.net
Had a really good meeting with the #SCITT community today. I keep using their open meetings to get input for the #OWASP Transparency Exchange API - how to add transparency logs and monitor for abuse, changes and manipulation. Software transparency is a lot about trust.

#SBOM #TEA
December 16, 2024 at 8:52 PM
Reposted by Olle E. Johansson
sbomeurope.eu
This Thursday afternoon (EU time) we'll host a webinar with Johanna Parikka Altenstedt where we will discuss the need for the legal team to be involved while working with making products comply with the new regulations.

Register at sbomlive03.eventbrite.com to participate!

#SBOM #EUCRA #NIS2
December 16, 2024 at 8:35 AM
oej.edvina.net
Watch my recent talk about the EU Cyber Resilience Act at OWASP BeneluxDays. It talks about how the CRA affects your software development, how the SBOM plays a role and how it affects your business model.

youtu.be/XMAfeQQ2ZOM?...

#CRA #SBOM #OWASP

@owasp.org
How The EU Cyber Resilience Act Will Change The Software Industry Forever - Olle E. Johansson
YouTube video by OWASP Netherlands
youtu.be
December 13, 2024 at 1:46 PM
Reposted by Olle E. Johansson
sbomeurope.eu
Today it's 1092 days left until all software products need to be CE marked and comply with the EU Cyber Resilience Act. It's time to get started. Learn more about this act and how it affects you in our webinar!

youtu.be/511uijZkH_U?...

#SBOM #EUCRA #CRA #CYBERSECURITY
SBOM update: The day the CRA clock starts to tick
YouTube video by SBOM Europe
youtu.be
December 13, 2024 at 1:27 PM
oej.edvina.net
Dec 11th is the day the CRA clock starts to tick. Three years after that, all products that includes software needs to be CE compliant. Join us in this webinar to discuss what it means, and how it will affect your business.

cralaunch.eventbrite.com

#SBOM #CRA #EUCRA
December 3, 2024 at 9:37 AM
oej.edvina.net
Lifecycle events are important in the secure supply chain for software and hardware. @owasp.org is working on a standard enumeration that will be part of the ECMA standardization. Read more on the OWASP CLE and how that fits in to the Transparency Exchange API (TEA) owasp.org/blog/2024/11...
November 27, 2024 at 10:24 AM
Reposted by Olle E. Johansson
owasp.org
If your company creates software that manage Software Bill of Material data - SBOMs - then you want to take part of the standardisation of an ECMA standard API for exchanging software transparency artefacts. Join us on November 25th! http://teaintro.even... #SPDX #SBOM #INTOTO #CYCLONEDX #OWASP
November 18, 2024 at 5:30 PM
oej.edvina.net
Testing with custom handle.
November 18, 2024 at 7:58 PM