How to secure your software with Open Source tools (2024) by Abdelfettah Sghiouar

Speaker: Abdelfettah Sghiouar, Senior Cloud Developer Advocate at Google
Recording date: 2024.02.15.
Level:

There is no such thing as 100% secure, but with defense in depth, you can get to a place where your Supply Chain is fortified. This session aims to give you the tools and guidance you need across the entire software lifecycle, from building and packaging your apps to dependencies management and code scanning.
Watch the video!

0:00-2:40 Intro
2:41-8:15 What Software Supply Chain Security is and why it matters
8:16-15:00 Zero trust and shift-left: Sigstore, SLSA, SBOM
15:01-22:57 Demo
22:58-25:22 Software Delivery Shield
25:23-25:58 Overview
25:59-31:16 Q&A

Join our meetup page here: https://www.meetup.com/gdg-cloud-buda...

#cloud #itcommunity #googlecloud #gcp #gdg #gdgcloudbudapest #supplychain #itsecurity #softwaresupplychain #opensource