Hello,
for the cybersecurity lifecycle of Unreal Engine and for the purpose of managing supply chain within my organization, I would like to request access to the Software Bill of Materials (SBOM). Specifically, we require the SBOM which will include a list of all software dependencies that have been scanned for Open Source Software (OSS) compliance and known vulnerabilities.
Background of my request are norms ISO/IEC 5230:2020 and ISO/IEC18974:2023 for OSS compliance and OSS security assurance.
Could anyone direct me to the appropriate documentation or resources for open source security compliance and assurance for Unreal Engine which will fulfill the requirements of the above norms?