In this segment, Mike and Dan McKinney from Cloudsmith will be discussing SBOM and what that looks like for your applications. They will also cover various topics such as cloud-native tooling for the software supply chain, the history of provenance, GPG Keys & signing commits, package consumption, threat modeling, and security asset responsibility. The discussion is sponsored by Cloudsmith, a company providing solutions to secure software development and management.