Proactive Supply Chain Security with GUAC
Offered By: OpenSSF via YouTube
Course Description
Overview
Discover the power of proactive vulnerability management in this 58-minute OpenSSF Tech Talk. Explore Graph for Understanding Artifact Composition (GUAC), an incubating project by the Open Source Security Foundation (OpenSSF) designed to enhance software supply chain observability. Learn how GUAC ingests and stores software security metadata in a persistent graph database, enabling consolidated querying of your software information. Meet the GUAC maintainers as they delve into the project's recent release, future roadmap, and opportunities for contribution. Gain insights into how GUAC can help you stay ahead of rapidly evolving cybersecurity threats by confidently identifying and locating potential vulnerabilities before they escalate into crises.
Syllabus
OpenSSF Tech Talk: Proactive Supply Chain Security with GUAC
Taught by
OpenSSF
Related Courses
Security Is an Ecosystem - We Can't Be Secure in IsolationLinux Foundation via YouTube Improving the Security of a Large Open Source Project One Step at a Time
Linux Foundation via YouTube Simplifying Coordinating Vulnerabilities and Disclosures in Open Source Projects
Linux Foundation via YouTube SLSA in Action: Securing the Software Supply Chain
Linux Foundation via YouTube Implementing OpenSSF Best Practices Badges and Scorecards for Project Security
Linux Foundation via YouTube