Overview
Explore the Supply-chain Levels for Software Artifacts (SLSA) project in this 50-minute DevSecCon talk. Gain insights into SLSA principles and their application across DevSecOps processes and systems. Examine the threat model guiding SLSA work, understand the project's security levels, and learn about future plans and opportunities for involvement. Delivered by Joshua Lock, Open Source Architect at Verizon and SLSA steering committee member, this presentation offers valuable knowledge on software supply chain security, build systems, and open source project leadership.
Syllabus
SLSA, more than just a garnish for your pipelines by Joshua Lock
Taught by
DevSecCon