Explore the Supply chain Levels for Software Artifacts (SLSA) framework in this 14-minute conference talk from DevConf.CZ 2023. Delve into the growing importance of ensuring code integrity from development to user deployment, especially as supply chains become more complex. Learn about the challenges posed by various systems involved in artifact creation, including build, signing, and packaging systems, and how they can introduce new vulnerabilities. Discover how SLSA provides a set of standards, best practices, and a common language to address these supply chain security issues. Gain valuable insights into this crucial aspect of software development and distribution, presented by speaker Roberto Hueso Gomez.
Overview
Syllabus
SLSA - A supply chain security framework - DevConf.CZ 2023
Taught by
DevConf