YoVDO

Secure Software Supply Chain: Current State in PHP and Drupal Ecosystem

Offered By: Drupal Association via YouTube

Tags

Cybersecurity Courses PHP Courses Drupal Courses Log4Shell Courses Sigstore Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the secure software supply chain and its current state within the PHP and Drupal ecosystem in this 37-minute DrupalCon Lille 2023 conference talk. Delve into major global events like SolarWinds, log4shell, codecov, and packagist, and learn about potential threats and mitigation strategies. Discover how to implement tools such as Sigstore, Syft, and Grype for digital signatures, SBOM generation, and automatic vulnerability scanning in real-world projects. Gain valuable insights into creating a secure supply chain pipeline for Drupal projects through a practical demonstration of these tools in action.

Syllabus

What is the secure software supply chain and the current state of the PHP and Drupal ecosystem


Taught by

Drupal Association

Related Courses

Log4j Vulnerability: What You Should Know
Pluralsight Mitigating Log4Shell and Similar Vulnerabilities Using Cloud Services
ChariotSolutions via YouTube Log4Shell Vulnerability - Bugcrowd Security Flash
Bugcrowd via YouTube Log4Shell - The Worst Java Vulnerability in Years
Bugcrowd via YouTube Keep Your Dependencies in Check
Devoxx via YouTube