控制器不存在:how-to-prevent-software-supply-chain-attacks-by-integrating-third-party-risk-intelligence-with-a-software-bill-of-materials