We are excited to launch a series of virtual tech talks to take a deep dive into some of the key initiatives to secure open source software at the OpenSSF. Our first tech talk was on the topic of SLSA (Supply-chain Levels for Software Artifacts). SLSA is an OpenSSF project that provides specifications for software supply chain security, established by community expert consensus. SLSA’s framework is organized into a series of levels that describe increasing security rigor, designed to give confidence that software hasn’t been tampered with and can be securely traced back to its source.
Building a Stronger Open Source Ecosystem: OpenSSF Scorecard
Discover the essence of the OpenSSF Scorecard and its pivotal role in fortifying the open source landscape. Gain invaluable insights from organizations at the forefront of implementing Scorecard as they share their experiences and best practices.
Securing the Software Supply Chain: An In-Depth Exploration of SLSA
Delve into the exciting world of SLSA and its transformative impact on software supply chain security.