Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Learn how to build trust through proactive security measures in software development by exploring the key components of a trusted software supply chain. Discover the fundamental differences between proactive and reactive security approaches, and understand how Red Hat implements a comprehensive Secure Software Development Lifecycle (SDLC) framework to enhance software security throughout the entire development process. Explore how the SLSA framework guides the reinforcement and gating of build processes to secure software supply chains against various threats using open source end-to-end build and release environments. Examine SDLC objectives and the methods used to achieve high security standards, including automated testing and open-source solutions that enhance the development lifecycle. Understand proactive vulnerability management strategies during the build lifecycle phase and learn about secure software building practices that include attestation data production, CSAF/VEX, and Software Bill of Materials (SBOM) generation. Gain insights into the future role of AI testing within software supply chain security and how these technologies will shape the landscape of secure software development.
