- Course
Hardening Your Soft Software Supply Chain
This talk will help you gain a better understanding of what you can do for supply chain security for your organization, the projects you depend on, and the projects you maintain.
Intermediate
- Course
Hardening Your Soft Software Supply Chain
This talk will help you gain a better understanding of what you can do for supply chain security for your organization, the projects you depend on, and the projects you maintain.
Intermediate
Get started today
Access this course and other top-rated tech content with one of our business plans.
Try this course for free
Access this course and other top-rated tech content with one of our individual plans.
This course is included in the libraries shown below:
- Core Tech
What you'll learn
Software supply chain threats are real. As more developers and companies rely on open-source code that anyone can contribute to, this opens the door to a new vector of attack. There are increasing supply chain compromises, which successfully sneak in new backdoored packages, use typosquatting, or even compromise build tooling and signing keys. What's actually happening in the wild? How do you determine your dependencies and properly secure yourself? In this session, you'll learn about common kinds of supply chain attacks and when they’re likely to occur. You'll also hear about what you can do to determine your dependencies, track metadata, and be notified of new security patches you should apply, including best practice. This talk will help you gain a better understanding of what you can do for supply chain security for your organization, the projects you depend on, and the projects you maintain.
Hardening Your Soft Software Supply Chain
Intermediate
Table of contents
DevSecCon is the global community dedicated to DevSecOps to help implement security in the overall development process.