Discover the power of proactive vulnerability management in this 58-minute OpenSSF Tech Talk. Explore Graph for Understanding Artifact Composition (GUAC), an incubating project by the Open Source Security Foundation (OpenSSF) designed to enhance software supply chain observability. Learn how GUAC ingests and stores software security metadata in a persistent graph database, enabling consolidated querying of your software information. Meet the GUAC maintainers as they delve into the project's recent release, future roadmap, and opportunities for contribution. Gain insights into how GUAC can help you stay ahead of rapidly evolving cybersecurity threats by confidently identifying and locating potential vulnerabilities before they escalate into crises.
Overview
Syllabus
OpenSSF Tech Talk: Proactive Supply Chain Security with GUAC
Taught by
OpenSSF
Related Courses
-
Developer Security Champion: Supply Chain Security
-
Enterprise Security Leadership: Understanding Supply Chain Security
-
Where Is the GUAC? - Understanding Artifact Composition in Software Supply Chains
-
Eliminating the Unknowns: Using GUAC to Better Understand Your Software Supply Chain
-
GUAC 101 - Introduction to Graph for Understanding Artifact Composition
-
GUAC Verification for Software Supply Chain Security
