Discover the power of proactive vulnerability management in this 58-minute OpenSSF Tech Talk. Explore Graph for Understanding Artifact Composition (GUAC), an incubating project by the Open Source Security Foundation (OpenSSF) designed to enhance software supply chain observability. Learn how GUAC ingests and stores software security metadata in a persistent graph database, enabling consolidated querying of your software information. Meet the GUAC maintainers as they delve into the project's recent release, future roadmap, and opportunities for contribution. Gain insights into how GUAC can help you stay ahead of rapidly evolving cybersecurity threats by confidently identifying and locating potential vulnerabilities before they escalate into crises.
Overview
Syllabus
OpenSSF Tech Talk: Proactive Supply Chain Security with GUAC
Taught by
OpenSSF