Security Weekly Podcast Network (Audio) cover image

Supply Chain Security Security with Containers and CI/CD Systems - Kirsten Newcomer - #ASW 256

Security Weekly Podcast Network (Audio)

00:00

SPDX and Software Bill of Materials

This chapter discusses the concept of SPDX and Software Bill of Materials (S-BOMs), highlighting the importance of including security references and vulnerabilities in S-BOMs. It also explores the expanded definition of the supply chain in modern software development and the need to effectively manage all types of content in the supply chain. The chapter concludes with the mention of the SolarWinds hack and the importance of tracking and securing the steps in the CI/CD process.

Transcript
Play full episode

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!
App store bannerPlay store banner
 Get the app