Re: SBOM Survey


karen.bennet
 

This survey was a great start to gather feedback about SBOM, but it would be good to get some questions about AI sBOM, they need additional information collected

On Thu, Nov 10, 2022 at 1:34 AM Wintersgill, Nathan <njwintersgill@...> wrote:

Dear SPDX Community,

The SEMERU research lab from William and Mary is conducting an online survey to understand issues, needs, and opportunities related to software supply chain management through Software Bill of Materials (SBOMs).

If you have knowledge of or experience with SPDX or other SBOM formats, we would value your participation in this study.

We would greatly appreciate 20-30 minutes of your time to complete the survey: https://wmsas.qualtrics.com/jfe/form/SV_cO4qm1gk3AFunJk.

If you decide to participate, we kindly ask you to complete the survey as soon as possible, ideally within a week. Participating will enter you into a lottery to win one of 10 $50 Amazon gift cards.

Your participation will help us in our mission to better understand the current state of SBOMs in practice and help us provide better resources and tools to developers for managing and securing their own software supply chains.

If you have any questions about our research, our methods, or our survey please do not hesitate to ask. If you have any colleagues who you believe may have valuable domain knowledge and experience, please forward this email and survey to them.

This research is conducted under protocol PHSC-2022-07-14-15722 approved by the IRB at William and Mary.

Thank you for your time,

Oscar Chaparro - Assistant Professor (oscarch@...)

Denys Poshyvanyk - Professor (dposhyvanyk@...)

Trevor Stalnaker - Ph.D. student (twstalnaker@...)

Nathan Wintersgill - Ph.D. student (njwintersgill@...)

Join spdx@lists.spdx.org to automatically receive all group messages.