Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
This 32-minute Linux Foundation talk explores how to combat the 700+% year-over-year increase in supply chain attacks by implementing safety guarantees in build systems. Learn about using the SLSA framework to generate provenance for build artifacts, connecting each artifact to both the builder's identity and the automated workflow used during construction. Discover how this approach enables reproducibility testing, significantly reducing the risk of backdoors or malware being introduced during the build process. Speakers Mihai Maruseac and Noah Elzner present a solution that automatically adds SLSA provenance to any project built using Bazel and GitHub Actions, enhancing security across the entire software development lifecycle.
