Sigstore: Past, Present and Future Directions
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Explore the evolution and future of Sigstore in this informative conference talk presented by project founders Luke Hinds from Stacklok and Bob Callaway from Google. Discover how Sigstore, established in 2021, has revolutionized software artifact signing and verification for developers, becoming the go-to solution for open-source software code signing. Learn about its widespread adoption by major cloud native projects like Kubernetes and Helm, as well as its integration with npm for SLSA provenance statement signing. Gain insights into Sigstore's expansive ecosystem, comprising over 58 repositories across various programming languages, and its role as a community-driven public service. Delve into the founders' experiences in cultivating a thriving community, ongoing integration efforts with platforms such as Homebrew, PyPI, and Maven Central, and get a glimpse of Sigstore's roadmap and future trajectory in the realm of software security and integrity.
Syllabus
Sigstore: Past, Present and Future Directions - Luke Hinds, Stacklok & Bob Callaway, Google
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Securing Your Software Supply Chain with SigstoreLinux Foundation via edX Hands-on Introduction to Sigstore - Securing the Software Supply Chain
Rawkode Academy via YouTube Protecting the World's Greatest Open Source Ecosystem with Sigstore
Devoxx via YouTube PGP vs Sigstore - The Match at Maven Central
Devoxx via YouTube Securing Your Infrastructure as Code Pipeline
Linux Foundation via YouTube