SSBOM1SCA2SDLC1security8software1software composition analysis4software development1software engineering2software vulnerability1supply chain2supply chain attack1