Robuta

Sponsor of the Day: Jerkmate

https://repos.openssf.org/ OpenSSF Securing Software Repositories Working Group | wg-securing-software-repos OpenSSF Working Group on Securing Software Repositories working group wg securing software openssf repositories https://anchore.com/open-source-security/ Open Source Security | Securing Open Source Software | Anchore Improve open source security by easily tracking direct and transitive open source dependencies to identify and fix vulnerabilities early. open source security securing software anchore https://repos.openssf.org/principles-for-package-repository-security.html Principles for Package Repository Security | wg-securing-software-repos OpenSSF Working Group on Securing Software Repositories package repository securing software principles security wg https://alpha-omega.dev/blog/slippery-zips-and-sticky-tar-pits-security-and-archives-white-paper-by-seth-larson-python-software-foundation/ Slippery Zips and Sticky Tar Pits: Securing Software Archives in Python Learn how the Python Software Foundation is improving archive security in a new white paper by Seth Larson, sponsored by Alpha-Omega. Explore how ZIP and tar... tar pits securing software slippery zips sticky https://www.csoonline.com/video/508779/lessons-from-the-solarwinds-attack-on-securing-the-software-supply-chain.html Lessons from the SolarWinds attack on securing the software supply chain | CSO Online software supply chain cso online lessons solarwinds attack https://repos.openssf.org/build-provenance-for-all-package-registries Build Provenance for All Package Registries | wg-securing-software-repos OpenSSF Working Group on Securing Software Repositories package registries securing software build provenance wg https://about.gitlab.com/the-source/security/guide-to-dynamic-sboms/ Guide to dynamic SBOMs: Securing software supply chains in modern development Learn how SBOMs enhance software supply chain security and help teams identify potential vulnerabilities across the software development lifecycle. software supply chains modern development guide dynamic sboms https://www.cncf.io/online-programs/cncf-on-demand-webinar-securing-the-software-supply-chain/ CNCF On demand webinar: Securing the software supply chain | CNCF Jan 2, 2025 - Ensuring the integrity and security of the software supply chains is crucial. This workshop discusses industry-standard practices and insights into this topic… software supply chain demand webinar cncf securing https://securitylab.github.com/ GitHub Security Lab | Securing open source software, together. Securing open source software, together. securing open source github security lab software together https://www.k8spodcast.nl/afleveringen/aflevering-131-securing-the-software-supply-chain-in-kubernetes Aflevering 131: Securing the Software Supply Chain in Kubernetes | De Nederlandse Kubernetes Podcast A key theme is balance: developers need freedom, but within secure guardrails. That’s why pipelines are not immediately blocked on vulnerabilities, but first... software supply chain kubernetes de nederlandse aflevering 131 securing