BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.devconf.info//devconf-cz-2026//talk//M7HHXR
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-devconf-cz-2026-M7HHXR@pretalx.devconf.info
DTSTART;TZID=CET:20260619T131500
DTEND;TZID=CET:20260619T135000
DESCRIPTION:Managing Software Bill of Materials (SBOMs) has evolved from a 
 recommendation to a legal mandate. For large-scale projects\, the challeng
 e lies in ensuring accuracy without hindering build velocity.\n\nIn this t
 alk\, we examine how we integrated an automated SBOM lifecycle into Konflu
 x\, a Kubernetes-native software factory. We introduce Mobster\, our tool 
 for automatically generating\, enriching\, and storing SBOMs for every pro
 duction build. We’ll demonstrate how this ensures every container image 
 carries a transparent\, verifiable record of its dependencies.\n\nBeyond t
 he build\, we explore how SBOMs serve as strategic assets. By integrating 
 with the Trusted Profile Analyzer\, we move from per-build compliance to p
 ortfolio-wide visibility. We’ll discuss the framework for mapping vulner
 abilities across thousands of components\, enabling security teams to pinp
 oint high-risk dependencies and orchestrate rapid\, large-scale remediatio
 n across the entire software catalog.
DTSTAMP:20260430T125203Z
LOCATION:E104 (capacity 72)
SUMMARY:Transforming SBOMs from Compliance Burden to Security Asset - Marti
 n Sikora\, Ales Raszka
URL:https://pretalx.devconf.info/devconf-cz-2026/talk/M7HHXR/
END:VEVENT
END:VCALENDAR