Eating the Open Source Security Sandwich with Skootrs
Offered By: OpenSSF via YouTube
Course Description
Overview
Explore the complexities of securing open source software in this 19-minute conference talk by Michael Lieberman from Kusari. Delve into the growing list of security considerations for software developers, including SLSA for secure builds, SPDX for creating SBOMs, Sigstore for software signing, and OpenVEX for vulnerability exchange. Learn about the "sandwich" of tools, practices, and data that developers must now produce and consume. Discover how Skootrs, a new open source tool, simplifies the adoption of these security practices through automation and guardrails, making it easier to implement cybersecurity measures from the start of a software project rather than retrofitting them later.
Syllabus
Eating the Open Source Security Sandwich with Skootrs - Michael Lieberman, Kusari
Taught by
OpenSSF
Related Courses
Securing Your Software Supply Chain with SigstoreLinux Foundation via edX Hands-on Introduction to Sigstore - Securing the Software Supply Chain
Rawkode Academy via YouTube Protecting the World's Greatest Open Source Ecosystem with Sigstore
Devoxx via YouTube PGP vs Sigstore - The Match at Maven Central
Devoxx via YouTube Securing Your Infrastructure as Code Pipeline
Linux Foundation via YouTube