Explore the complexities of managing open source software supply chains in this 18-minute conference talk by Nithya A Ruff from Amazon. Gain insights into the challenges of working with volunteer creators and producers, and learn strategies for curating, tracking, and securely managing open source components from multiple projects. Discover the importance of collaboration among open source projects, foundations, consumers, and government entities to ensure a secure supply chain. Examine the role of Open Source Program Offices (OSPOs) in establishing relationships to manage software supply chains, both established and accidental. Understand the unique aspects of open source supply chains and key factors to consider for effective management.
Overview
Syllabus
Collaborating Along The Software Supply Chain - Nithya A Ruff, Amazon
Taught by
OpenSSF
Related Courses
-
The Evolution of the Software Supply Chain Attack
-
Hardening Your Soft Software Supply Chain
-
DevOps with GitHub and Azure: Implementing Software Supply Chain Security with GitHub
-
The Evolving Open Source Program Office - Challenges and Opportunities
-
Securing Open Source Supply Chains: Challenges and Solutions
-
GitHub Supply Chain Security Using GitGat
