Navigating Dependency Management with SBOM and GUAC

CRob is joined by Michael Lieberman, CTO and co-founder of Kusari, about the importance of supply chain security in the open source ecosystem. They discuss Michael's journey in open source, his contributions to projects like SLSA and GUAC and the future of supply chain security. 

• 01:56 - Michael explains how he got into open source
• 04:10 - The challenges of being a startup within the open source ecosystem
• 05:38 - Michael digs into his participation with SLSA and GUAC
• 09:13 - How maintainers can address SBOMs with GUAC
• 10:56 - Michael’s predictions for supply chain security and dependency management
• 14:26 - Michael answers CRob’s rapid-fire questions
• 15:32 - Advice for those entering the cybersecurity or open source development spaces
• 17:50 - Michael’s call to action

Links:

• Michael Liberman on LinkedIn
• Kusari homepage 
• GUAC homepage on OpenSSF
• SLSA homepage on OpenSSF
• Get involved with the OpenSSF
• Subscribe to the OpenSSF newsletter
• Follow the OpenSSF on LinkedIn