When buying pre-made food in the supermarked, there are a variaty of regulations on what information the producer is required to give us. Yet, we serve our software point blank without any “notrision information” or ingredient lists. It demands that your customers needs to “just trust” you. But past years software supply chain attacks have shown that we need to make trust in security an integral part of our release. In this lightning talk I will introduce SLSA (Supply-chain Levels for Software Artifacts), and show the first easy steps you can take to enchance your security and reproducability.
DevOps Consultant, Trainer & Team Lead at Eficode
Sofus is the team lead at Eficode Copenhagen office. He helps clients ship software faster to their customers by upskilling their teams in
...