Compare with different regulatory event:
On 17 November, the “Guidance for Customers on Securing the Software Supply Chain” was published jointly by the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Office of the Director of National Intelligence (ODNI). The Guidance addresses vulnerabilities in the software supply chain that pose risks to organisations and includes recommended practices that customers should apply in the acquisition, deployment, and operational stages of a software supply chain in order to mitigate associated risks such as cyberattacks.
Original source