Devconf.cz 2023 has ended
Saturday, June 17 • 1:30pm - 1:45pm
SLSA - A supply chain security framework

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Making sure that the code you wrote is what the users get in the form of an artifact (binary, container, etc.) without any tampering in the way is becoming an important issue, especially when supply chains grow in complexity. Today there are build systems, signing systems, packaging systems and many more, involved in the creation of these artifacts. Additional pieces of software and systems can introduce new vulnerabilities. Supply chain Levels for Software Artifacts (SLSA) brings a set of standards, good practices and a common language to help us mitigate these issues.

In this talk we will have an introduction to SLSA.


Roberto Hueso Gomez

Senior Software Engineer, Red Hat
Roberto is an open source and free culture enthusiast, he has contributed to multiple projects such as mlpack or OpenSSL. He is currently a Senior Software Engineer in Red Hat working in the Pipeline Value Security Team and studying his master's degree.

Saturday June 17, 2023 1:30pm - 1:45pm CEST
A112 | Lightning Talks