Chainguard's Dan Lorenc gets real on software supply chain problems
Three Buddy Problem
00:00
Chain Guard - What's the Chain of Trust?
SIG store is a tool for signing and verifying the code that they're using, being able to trace that back. It's been introduced in almost all popular open source language package managers over the last year. We spent more time this year working on products than we had planned so we have two products out right now. The first product is chain guard enforce. This is the agent running in production and watching what is there and alerting you about risks along the way.
Transcript
Play full episode
