Completed
SLSA - Supply Chain Levels for Software Artifacts
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Infusing Security Into the Application Development Process
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Recap of what was covered in previous episodes
- 3 Introducing the Spring framework
- 4 Using open source in your application
- 5 Dependencies - https://xkcd.com/2347/
- 6 Introducing the Software Bill of Materials SBOM
- 7 Generating an SBOM in Artifactory/ Xray
- 8 Exporting an SBOM Artifactory/Xray
- 9 Who should be paying attention to security
- 10 Everything as code
- 11 How times have changed
- 12 Awareness is key
- 13 The Leftpad incident
- 14 Engineering in software engineering
- 15 Choosing components
- 16 Involving management in security
- 17 Considering security from the beginning
- 18 Available resources for vulnerability intel
- 19 All vulnerabilities vs applicable vulnerabilities
- 20 Importance of context in vulnerability scanning
- 21 What is a Certified Naming Authority CNA ?
- 22 Different flavors of vulnerability research
- 23 SLSA - Supply Chain Levels for Software Artifacts
- 24 A shared vocabulary
- 25 Automating SBOMs
- 26 From the developers side
- 27 FrogBot: scan pull requests for vulnerabilities after check-in
- 28 Securing your container images
- 29 Problems with always using the latest version
- 30 Looking into pyrsia.io for software supply chain security
- 31 Security-minded development