Dev Interrupted What Hackers Know About Your Software Supply Chain (That You Don’t) w/ Chainguard's Kim Lewandowski
Jan 29, 2022
30:57
You’ve heard of the supply chain, but what about the software supply chain?
Unlike the standard supply chain that you often hear about in the news, this week’s episode of Dev Interrupted dives into the supply chain responsible for holding together the systems that companies, orgs and governments depend upon.
Kim Lewandowski, a software supply chain security expert, co-founded Chainguard in 2021 with a mission to make the software supply chains secure by default.
In our conversation, Kim discusses why hackers are way ahead of the game on the software supply chain, what companies can do about it and why excitement around open source may not align with the security threats of the future.
She also details why 5 founders may be better than 2, why you might find her Easter eggs in nuclear codes and why Google is an amazing pit-stop in anyone’s career.
Chainguard's website: https://chainguard.dev/
Join our Discord Community ►► discord.gg/devinterrupted
Our Website ►► devinterrupted.com/
Want to try LinearB? Book a LinearB Demo and use the "Dev Interrupted Podcast" discount code.
Have 60 seconds? Review the show on Apple Podcasts
Join our Discord Community ►► discord.gg/devinterrupted
Our Website ►► devinterrupted.com/
Want to try LinearB? Book a LinearB Demo and use the "Dev Interrupted Podcast" discount code.
Have 60 seconds? Review the show on Apple Podcasts
OFFERS
- Start Free Trial: Get started with LinearB's AI productivity platform for free.
- Book a Demo: Learn how you can ship faster, improve DevEx, and lead with confidence in the AI era.
LEARN ABOUT LINEARB
- AI Code Reviews: Automate reviews to catch bugs, security risks, and performance issues before they hit production.
- AI & Productivity Insights: Go beyond DORA with AI-powered recommendations and dashboards to measure and improve performance.
- AI-Powered Workflow Automations: Use AI-generated PR descriptions, smart routing, and other automations to reduce developer toil.
- MCP Server: Interact with your engineering data using natural language to build custom reports and get answers on the fly.