| GUAC (Graph for Understanding Artifact Composition) is a collaborative project developed by Google, Kusari, Purdue University, and Citibank for software supply chains. GUAC can combine software security metadata from many different sources. GUAC aims to make software build, security, and dependency metadata information more widely available and freely available to every organization, not just Top companies in the industry. GUAC has the following four key functions: Gather: Information that can configure GUAC and connect it to various software security metadata… |
#Software #Metadata #Atlas #GUAC