Software supply chain security guidance covering SBOM generation, SLSA framework, dependency scanning, SCA tools, and protection against supply chain attacks like dependency confusion and typosquattin
plugins/security/skills/supply-chain-security/SKILL.md(main)