YoVDO

OSS Supply Chain Threats and Why You Need a Holistic Security Strategy

Offered By: Linux Foundation via YouTube

Tags

Cybersecurity Courses Software Development Courses DevSecOps Courses OpenSSF Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore 13 real-world threats to open source components and their potential impact on downstream developers in this 51-minute conference talk by Adrian Diglio from Microsoft. Gain insights into the growing importance of open source security, with over 90% of software industry-wide depending on open source components and attacks targeting these components increasing exponentially year over year. Learn how these threats can compromise developer identities and DevOps infrastructure, emphasizing the need for a comprehensive security strategy. Discover how the OpenSSF's Secure Supply Chain Consumption Framework (S2C2F) can assist development teams and organizations in modernizing their DevSecOps practices to mitigate each of the discussed threats.

Syllabus

OSS Supply Chain Threats and Why You Need a Holistic Security Strategy - Adrian Diglio, Microsoft


Taught by

Linux Foundation

Tags

Related Courses

Security Is an Ecosystem - We Can't Be Secure in Isolation
Linux Foundation via YouTube Improving the Security of a Large Open Source Project One Step at a Time
Linux Foundation via YouTube Simplifying Coordinating Vulnerabilities and Disclosures in Open Source Projects
Linux Foundation via YouTube SLSA in Action: Securing the Software Supply Chain
Linux Foundation via YouTube Implementing OpenSSF Best Practices Badges and Scorecards for Project Security
Linux Foundation via YouTube