coderpatros's profile picture. Product Security Manager @ServiceNow and @OWASP @CycloneDX_Spec #SBOM Project Co-Lead. All views are my own.

Patrick Dwyer

@coderpatros

Product Security Manager @ServiceNow and @OWASP @CycloneDX_Spec #SBOM Project Co-Lead. All views are my own.

Patrick Dwyer hat repostet

Join us on Wed May 28, 2025 in Barcelona for a hands-on hackathon to test Beta 1 of the Transparency Exchange API (TEA) — a new way to securely exchange SBOMs, attestations & more. Free registration, thanks to @OWASP & @EcmaIntl cyclonedx.org/events/hackath… #CycloneDX #SBOM


Patrick Dwyer hat repostet

We're now accepting sponsorship for our 2024 conference, held at Brisbane State High School on December 7th. Get your brand in front of 450+ developers, testers, managers, and more! DM or email [email protected] for a copy of our 2024 prospectus.

DDDBrisbane's tweet image. We're now accepting sponsorship for our 2024 conference, held at Brisbane State High School on December 7th. Get your brand in front of 450+ developers, testers, managers, and more!

DM or email sponsorship@dddbrisbane.com for a copy of our 2024 prospectus.

Patrick Dwyer hat repostet

We are excited to announce that CycloneDX v1.6 has been officially ratified as an Ecma International standard following a decisive vote at the Ecma General Assembly on 26 June. #SBOM #CycloneDX #OWASP #SoftwareSupplyChain #Ecma #TC54 cyclonedx.org/news/cyclonedx…


Patrick Dwyer hat repostet

Today is the launch of @Semgrep Academy! Free courses on #AppSec, Secure Coding, #API Security, Functional Programming, and MORE! Please go check it out here: Academy.Semgrep.dev


Patrick Dwyer hat repostet

#OWASP CycloneDX v1.6 now available with support for Cryptography Bill of Materials (CBOM), Attestations, and more. Explore whats new in the: - Authoritative Guide to CBOM - Authoritative Guide to Attesations - Authoritative Guide to SBOM, Second Edition cyclonedx.org/guides/


Patrick Dwyer hat repostet

CycloneDX v1.6 has landed with support for tracking cryptographic assets and their dependencies for Post-Quantum Cryptography (PQC) readiness. #CBOM CycloneDX Attestations provides “compliance as code” Enhancements to existing AI/ML support… #SBOM cyclonedx.org/news/cyclonedx…


Patrick Dwyer hat repostet

Be a driving force in advancing the #OWASP Foundation's mission! Join us as a Corporate Supporter and create a meaningful impact with your support! 🌐🤝 owasp.org/supporters/pac… #Cybersecurity #InfoSec #supportnonprofit #nonprofit #benefits #appsec #developers

owasp's tweet image. Be a driving force in advancing the #OWASP Foundation's mission! Join us as a Corporate Supporter and create a meaningful impact with your support! 🌐🤝 owasp.org/supporters/pac… #Cybersecurity #InfoSec #supportnonprofit #nonprofit #benefits #appsec #developers

Patrick Dwyer hat repostet

#BSidesBrisbane is back! We're seeking sponsors to help make this year's security conference a success. Email [email protected] for more info, or hit up the website for the prospectus here: buff.ly/3JiimsB


Patrick Dwyer hat repostet

Happy New Year to all! Start the year with a bang by securing your seat at the #BSidesBrisbane2024 event. Tickets are on sale now, don't miss out! The first 50 ticket sales using discount code BSIDES-EARLYBIRD will receive 10% off Grab your tickets here: buff.ly/3GYQnN7


Patrick Dwyer hat repostet

The Ecma TC54 website is now live! Visit tc54.org to learn more about the ongoing work the technical committee is pursuing and how to contribute. #ecma #tc54 #owasp #cyclonedx #sbom


Patrick Dwyer hat repostet

Ecma TC54 is holding its first call on Thursday, 13 December at 10:30 U.S. Eastern. Meetings are open to Ecma member organizations. Reach out to @stevespringett and @littledan for Zoom link.


Patrick Dwyer hat repostet

Thank you SANS for this incredible honor. The Dependency-Track project would not be possible without our amazing community of maintainers, contributors, and the organizations that entrust #OWASP in helping reduce their supply chain risk. #SBOM #CycloneDX #EO14028

Open-Source Tool of the Year 💻 goes to the person or organization that created an open-source tool that is of significant value to the community. This year, @DependencyTrack was the Community Winner! Congrats! #SANSDMA

SANSInstitute's tweet image. Open-Source Tool of the Year  💻  goes to the person or organization that created an open-source tool that is of significant value to the community. 

This year, @DependencyTrack was the Community Winner! Congrats! #SANSDMA


Patrick Dwyer hat repostet

The @CycloneDX_Spec (Software Bill of Materials Standard) project took a step further with the convening of a new technical committee at @EcmaIntl. @coderpatros, co-lead of the project, spoke about this at @swisscyberstorm 2021. See his talk here: youtu.be/zQmtdV-4ZiQ?si…

swisscyberstorm's tweet card. How a SBOM is a key factor when securing the supply chain By Patrick...

youtube.com

YouTube

How a SBOM is a key factor when securing the supply chain By Patrick...

Earlier today, Technical Committee 54 was officially convened within @EcmaIntl as a royalty-free task group. #TC54 is chartered with standardizing #OWASP @CycloneDX_Spec, standards and algorithms that advance transparency and sharing of this information across the supply chain.

EcmaTC54's tweet image. Earlier today, Technical Committee 54 was officially convened within @EcmaIntl as a royalty-free task group. #TC54 is chartered with standardizing #OWASP @CycloneDX_Spec, standards and algorithms that advance transparency and sharing of this information across the supply chain.


Patrick Dwyer hat repostet

Earlier today, Technical Committee 54 was officially convened within @EcmaIntl as a royalty-free task group. #TC54 is chartered with standardizing #OWASP @CycloneDX_Spec, standards and algorithms that advance transparency and sharing of this information across the supply chain.

EcmaTC54's tweet image. Earlier today, Technical Committee 54 was officially convened within @EcmaIntl as a royalty-free task group. #TC54 is chartered with standardizing #OWASP @CycloneDX_Spec, standards and algorithms that advance transparency and sharing of this information across the supply chain.

Patrick Dwyer hat repostet

We’re proud to announce the immediate availability of the SCVS BOM Maturity Model. The model allows organizations to evaluate #SBOM quality and mature and optimize their investment in software and system transparency. einpresswire.com/article/665343… #OWASP


Patrick Dwyer hat repostet

Bloomberg is proud to be a founding member of @EcmaIntl's TC54, which will work with @owasp on standardizing #CycloneDX & related technologies to improve software and system transparency, which are critical to securing the #softwaresupplychain for modern applications #SBOM

@owasp Foundation Joins Ecma International to Drive Software Transparency and Standardization of OWASP #CycloneDX. Press release: einpresswire.com/article/661184… Blog post: owasp.org/blog/2023/10/1… #SBOM #SoftwareTransparency #SaaSBOM #HBOM #CBOM #EO14028



Patrick Dwyer hat repostet

Excellent summary and analysis by Tom Alrich on CycloneDX v1.5. In the article, he refers to the CycloneDX Authoritative Guide to SBOM as the “single best document on SBOM.” Thanks Tom, we completely agree. PDF: cyclonedx.org/guides/sbom/OW… fossa.com/blog/whats-new… #OWASP #SBOM


Patrick Dwyer hat repostet

OWASP’s CycloneDX v1.5 goes beyond established standards, by introducing ML transparency. buff.ly/3XzHctN


Patrick Dwyer hat repostet

What is the most exciting and useful feature in CycloneDX v1.5?


Loading...

Something went wrong.


Something went wrong.