sbomify logo

Viktor Petersson

Viktor Petersson

Serial entrepreneur and cybersecurity innovator, currently focused on shaping the future of software security and compliance. As the founder of sbomify, he simplifies Software Bill of Materials (SBOM) management, helping organizations navigate emerging cybersecurity regulations such as the Cyber Resilience Act (CRA). Viktor co-led the CISA SBOM Working Group on SBOM generation and is an invited expert to ECMA TC54. He shares insights and industry trends through his podcast, Nerding Out With Viktor.

Posts by Viktor Petersson

Announcing sbomify v0.26: The One Where Bootstrap Moved Out

Announcement

sbomify v0.26 delivers a faster, more accessible UI, real-time dashboard updates, BSI TR-03183-2 compliance, and GDPR self-service account deletion.

Announcing sbomify-action v0.13: The One Where We Go to FOSDEM

Announcement

sbomify-action v0.13 brings hash enrichment from lockfiles, an interactive configuration wizard, Conan Center integration for C/C++, and improved NTIA …

Announcing sbomify v0.25: The One with Attestations

Announcement

sbomify v0.25 introduces GitHub Attestation verification via Sigstore/cosign, SPDX 2.3 export, product lifecycle tracking, and compliance badges.

Announcing sbomify-action v0.11: The One Where They Go to PyPI

Announcement

sbomify-action v0.11 transforms from a CI-only tool into a fully-fledged CLI available on PyPI. Major additions include audit trails for compliance, …

Announcing sbomify v0.24: The One with All the Plugins

Announcement

sbomify v0.24 introduces a powerful plugin-based assessment framework supporting security, license, compliance, and attestation plugins. Ships with …

FDA Medical Device SBOM Requirements: What the New Cybersecurity Guidance Means for Manufacturers

Compliance

Breakdown of the FDA's June 2025 guidance on medical device cybersecurity, explaining SBOM requirements, premarket submission expectations, and …

CRA Explained: What the Cyber Resilience Act Means for Device Manufacturers

Podcast

Podcast episode with EU CRA expert Sarah Fluchs explaining SBOM requirements, the 5-year support mandate, and vulnerability management for device …

Major Updates: sbomify v0.21 and Action Module v0.8 & v0.9

Announcement

Triple release: sbomify v0.21 with vulnerability trends dashboard, plus GitHub Action v0.8 and v0.9 featuring modular generation plugins and 8 …

Announcing sbomify v0.20: Custom Domains & Streamlined Onboarding

Announcement

sbomify v0.20 release featuring custom domain support for Trust Centers, redesigned onboarding wizard, team invitation improvements, and security …

Announcing GitHub Action 0.7.0 and sbomify 0.19

Announcement

Major releases: GitHub Action 0.7.0 with ecosyste.ms enrichment and SPDX support, plus sbomify 0.19 with full Django+HTMX migration, custom domains, …

CISA's Minimum Elements now in Draft

News

Analysis of CISA's 2025 draft SBOM Minimum Elements update, adding required hash, license, and tool provenance fields to succeed the 2021 NTIA …

Big Update to sbomify

Announcement

sbomify v0.15 introduces document support alongside SBOMs, improved public pages, and product-level SBOM aggregation—evolving into a complete …

← Previous Page 1 of 3 Next →