Shielding Your Packages: Security Across the Software Supply Chain
Developers are now the target of the attackers, with binaries available publicly. Thank you Open Source!
With the increasing complexity of the software supply chain, security and governance are becoming critical on developer’s machines, and are being discussed at the C-level and in boardrooms. Software supply chain solutions must keep up to incorporate robust, holistic security, or risk being the next tool to be consolidated. Discover the DevOps-centric approach to security that will drive the software supply chain of tomorrow.
In this workshop, you will learn:
- How to swiftly identify, prioritize, and mitigate OSS security concerns in binaries, builds, and release bundles
- Enable end-to-end DevSecOps automation for proactive prevention, detection, and quick remediation and response
- Effortlessly generate and export industry-standard SPDX, CycloneDX (VEX) SBOMs
- Centralize visibility and control over 3rd party package downloads, ensuring only trusted packages are utilized by your developers