WARNING: ENISA Seeks Stronger Controls for SBOMs and Package Managers

ENISA opened consultations on Software Bill of Materials adoption and secure package-manager use, reinforcing the need to govern dependencies behind operational software and AI-built applications.

Supply Chain technology teams should require component inventories, controlled package sources and clear vulnerability ownership from internal teams and vendors.

More details are available in the ENISA consultation notice.