Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Learn how to integrate two OpenSSF projects, Zarf and GUAC (Graph for Understanding Artifact Composition), to enhance software supply chain security in both connected and disconnected environments in this 22-minute conference talk. Discover how Zarf enables secure packaging and deployment of software while GUAC aggregates and contextualizes Software Bill of Materials (SBOMs) to improve software provenance and risk assessment. Explore the practical benefits of combining these tools, including secure SBOM packaging and transport capabilities, automated SBOM generation and enrichment processes, and improved traceability and risk assessment specifically designed for airgapped environments. Gain actionable insights into strengthening your organization's supply chain security posture and meeting emerging compliance requirements through the strategic use of these complementary OpenSSF technologies.
![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=40,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
