NIST has released version 2.0 of the Cybersecurity Framework (CSF), focused on risk management and security for software supply chains. The update includes the new Govern function and tools such as the CSF 2.0 Reference Tool and the CPRT, to assist in the implementation and organizational coordination of the framework.
Haven’t had a chance to look at it yet but I am very curious to see what they did with it.