SD Times

Version 1.0 of SLSA provides specifications for software supply chain security

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
Infosecurity-magazine.com

Google Spices Up Supply Chain Security with SLSA Framework

Google has proposed a new framework to mitigate the growing risks posed by attacks on the software supply chain. The Supply Chain Levels for Software Artifacts (SLSA, pronounced “salsa”) is designed ...
SDxCentral

OpenSSF give supply chain security a boost with SLSA 1.0

Supply chain security represents a complex challenge for organizations across industries, but it might be getting just a bit easier today with the release of the SLSA (pronounced salsa) 1.0 ...
InfoQ

Google Distroless Images Achieve SLSA Level 2

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Traditional caching fails to stop "thundering ...
SDxCentral

Google SLSA, Linux Foundation Drops SBOM for Supply Chain Security Boost

Google and the Linux Foundation separately debuted new tools to improve supply chain security, with a specific focus on open source software, as federal agencies work on software-related standards and ...
InfoQ

KubeEdge Achieves SLSA Level 3 Compliance

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Prevent AI-generated tech debt with Skeleton ...
ZDNet

Open-source security: Google has a new plan to stop software supply chain attacks

To tackle the growing threat of attacks on the software supply chain, Google has proposed the Supply chain Levels for Software Artifacts framework, or SLSA which is pronounced "salsa". Sophisticated ...