Tech Stack: SBOM/SLSA-style provenance, cryptographic hashing/signing, model registries, CI/CD integrity gates, embedding/vector stores