Explore how to mitigate attacks on the software supply chain using the GOSH Docker Extension in this 37-minute video presentation. Delve into the key features of GOSH, including container verification through a Decentralized Name Service, trustless cryptographic signatures, decentralized autonomous organization (DAO) governance, and automated CI/CD pipeline security. Learn how these components work together to prevent common attack vectors, ensure code integrity, and enhance overall security in software development. Gain insights from GOSH co-founder Mitja Goroshevsky on implementing formal verification and smart contracts to create a robust, immutable software supply chain. Discover practical strategies to protect your repositories, verify contributor identities, and automate security checks using blockchain technology and the GOSH Docker Extension.
Mitigating Attacks on Software Supply Chain Using GOSH Docker Extension
Overview
Syllabus
Mitigating attack on Software Supply Chain using GOSH Docker Extension
Taught by
Docker
Related Courses
-
Secure Software Supply Chain for CSSLP®
-
Building the Software Supply Chain on Docker Official Images
-
Demystify Secure Software Supply Chain Metadata
-
Docker Scout - Securing the Complete Software Supply Chain
-
Docker and Pyrsia - Securing the Software Supply Chain
-
Open Source Software Supply Chain Security - Understanding Threats and Best Practices
