{"database": "openregs", "table": "ig_recommendations", "rows": [[18, "2024-audit-boards-information-security-program", "1", "Yes", "Develop a supply chain risk management strategy that includes (a) a supply chain risk appetite and tolerance, (b) an enterprise supply chain risk management governance structure, and (c) supply chain risk assessment processes that include migration strategies or controls.", 0, 0]], "columns": ["rowid", "report_id", "rec_number", "significant", "text", "questioned_costs", "funds_for_better_use"], "primary_keys": ["rowid"], "primary_key_values": ["18"], "units": {}, "query_ms": 0.6816560635343194, "source": "Federal Register API & Regulations.gov API", "source_url": "https://www.federalregister.gov/developers/api/v1", "license": "Public Domain (U.S. Government data)", "license_url": "https://www.regulations.gov/faq"}