2 templates mapped to NIST SSDF (Secure Software Development Framework).
Comprehensive policy for software inventory management and Software Bill of Materials (SBOM) implementation covering Executive Order 14028, EU Cyber Resilience Act, SPDX/CycloneDX standards, automated SBOM generation, vulnerability correlation, supply chain security, and regulatory compliance for modern software development.
Comprehensive policy for integrating security throughout the software development lifecycle including security requirements, threat modeling, secure coding standards, code review, SAST/DAST, dependency scanning, security testing gates, and release approval aligned with NIST SSDF and OWASP best practices.