Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Explore software supply chain security through a comprehensive 55-minute conference talk that demonstrates how to protect against modern attacks targeting the development and deployment pipeline. Learn about the anatomy of typical supply chain attacks and discover common security gaps in developer workflows that can be prevented. Watch a live demonstration of a hardened CI/CD pipeline that integrates security at every stage, from development through deployment. Examine techniques for implementing secure builds with verifiable provenance and minimal base images, while exploring real-world methods for securing containers, generating Software Bills of Materials (SBOMs), and signing artifacts using Sigstore. Gain practical insights on empowering platform teams to maintain security without compromising engineering velocity, with specific focus on Kubernetes environments, internal developer platforms, and high-trust systems. Understand what "secure by default" means in practice and acquire actionable tools for implementing robust software supply chain security in fast-moving development environments.
![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=40,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
