Designation: Developer Advocate
Topic: Building Trust in your Software Supply Chain with SLSA
Date: 7th October, 2021
Time: 11:45 PM to 12:30 PM
The Software Supply chain is everything that goes into the process of developing and deploying your code to production. From the version control system where you check-in code, to the management of Open Source dependencies. From the CI/CD pipelines that build and deploy code, to making your packaged software available to your end users. The delivery chain can be severely compromised due to vulnerabilities across open source components that you did not write.
SLSA, is Supply-chain Levels for Software Artifacts. It is a security framework from source to service, giving anyone working with software a common language for increasing levels of software security and supply chain integrity.
This session will give Developers and DevOps Engineers an overview of the risk vectors in a typical software supply chain, how you can keep your organization and consumers safe, and how you can contribute to the SLSA framework.
Prashanth is a Developer Advocate with Google Cloud and leads the Cloud Advocacy team in India. In past life, he has been a Development Architect with SAP, and an Engineer with Google.
During the day, he spends time demystifying Cloud-native development in the areas of Containers, Serverless, CI/CD and DevOps.
At leisure, he enjoys learning languages be it programming languages or spoken languages; though he prefers the latter as it doesn’t have a new one being created every 6 months.