1. Confirm that any project software contributed as a reuse candidate has the identified 1. Confirm the project has performed a software cybersecurity assessment on the software components per the Agency security policies and the project requirements, including risks posed by the use of COTS, GOTS, MOTS, OSS, or reused software components. in items “a” through “f.”
