[Git][reproducible-builds/reproducible-presentations][nevermind-the-checkboxes] Stuff on SBOMs

[Chris Lamb (@lamby)]

Chris Lamb pushed to branch nevermind-the-checkboxes at Reproducible Builds / reproducible-presentations


Commits:
757463ad by Chris Lamb at 2025-08-02T09:17:47-07:00
Stuff on SBOMs

- - - - -


1 changed file:

- 2025-08-02-fossy-nevermind-the-checkboxes/Nevermind-the-Checkboxes-heres-Reproducible-Builds.org


Changes:

=====================================
2025-08-02-fossy-nevermind-the-checkboxes/Nevermind-the-Checkboxes-heres-Reproducible-Builds.org
=====================================
@@ -247,6 +247,14 @@ Do Software Bill of Materials (SBOMs) actually give you the
 information necessary to verify how a given software artifact was
 built?
 
+While SBOMs provide valuable information about the components of software,
+reproducible builds offers a more robust guarantee by directly tying the binary
+back to the source code. They ensure the actual code can be audited and
+verified for consistency with the distributed binary, reducing potential
+vectors for compromise that occur between source code and final product
+
+They therefore provide stronger assurances of integrity and security.
+
 #+ATTR_BEAMER: :overlay <+->
 - ...
 - list of software dependencies



View it on GitLab: https://salsa.debian.org/reproducible-builds/reproducible-presentations/-/commit/757463adfde9c862b878dbfb9558f10c9b8fcd1c

-- 
View it on GitLab: https://salsa.debian.org/reproducible-builds/reproducible-presentations/-/commit/757463adfde9c862b878dbfb9558f10c9b8fcd1c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.reproducible-builds.org/pipermail/rb-commits/attachments/20250802/a9c272fc/attachment.htm>