While the security industry may disagree about most topics, there is no shortage of security control frameworks. NIST 800-53r5, NIST CSF, SOC, HIPAA, PCI, ISO 2700, and SASB. While those standards address everything from technical implementations to job descriptions, more niche frameworks have emerged. These include MITRE’s ATT&CK and Google’s SLSA, which provides software supply chain security guidance. None, however, address the needs of Web3. InfiniteSn4ke | Forkbomb | Helianthus For inter...