Package Transparency for WebAssembly Registries

Explore the innovative approach to supply chain security in WebAssembly (Wasm) package distribution through this informative conference talk. Delve into the development of 'warg', a new registry protocol for Wasm packages spearheaded by the Bytecode Alliance. Learn how this protocol implements "Package Transparency" by leveraging verifiable data structures from Certificate Transparency, enabling full registry state validation, easy replication, and quick detection of operator compromise. Gain insights into the potential advancements in code portability and security offered by WebAssembly, and understand the critical role of secure publishing and distribution methods in realizing its full potential.