Add documentation about Dependency Track / CyclonDX / SBOM
see https://gitlab.gwdg.de/fe/technical-reference/-/wikis/2022/2022-06-14
-
create subchapter in new chapter "security and compliance" (see #23) -
briefly describe sbom -
sbom generation and build tool -
uploading, -
dependency-track
-
-
reference from chapter 11.2 Packaging and Dependency Management -
reference sbom chapter from ci (list element in packaging and distribution) -
reference from operations and mainteneance (continuous security monitoring)
Edited by Ubbo Veentjer