Software Component Verification Standard
Measure and Improve Software Supply Chain Assurance
SCVS is trusted by thousands of organizations and has been adopted, in its entirety, by the NIST Secure Software Development Framework (SSDF).
SCVS requirements are organized into three layers allowing organizations to gradually adopt and mature software supply chain assurance.
With guidance from industry experts, SCVS is a community-driven OWASP standard which encourages active participation.