Markus Siebert enhanced SBOM management in the goreleaser/goreleaser repository by introducing a configurable SBOMDirectory to the KO build flow. He updated the Ko struct and makeBuilder logic in Go to allow explicit specification of SBOM file storage paths, particularly when generating SPDX SBOMs. This change improved traceability and compliance in the build process by ensuring SBOMs are stored in predictable locations. Markus also expanded the test suite to cover new path handling scenarios and validated end-to-end SBOM generation. His work demonstrated depth in build systems, configuration management, and software supply chain security, focusing on maintainability and integration quality.