Hacker News
Linking pages
- GitHub - ddworken/hishtory: Your shell history: synced, queryable, and in context https://github.com/ddworken/hishtory 136 comments
- Mac's Tech Blog https://www.macchaffee.com/blog/2023/solarwinds-hack-lessons-learned/ 110 comments
- Open source is not insecure | InfoWorld https://www.infoworld.com/article/3714445/open-source-is-not-insecure.html#tk.rss_security 71 comments
- Binary Authorization for Borg | Documentation | Google Cloud https://cloud.google.com/security/binary-authorization-for-borg/ 58 comments
- Adding build provenance to Homebrew | Trail of Bits Blog https://blog.trailofbits.com/2023/11/06/adding-build-provenance-to-homebrew/ 46 comments
- GitHub - edgelesssys/constellation: Constellation is the first Confidential Kubernetes. Constellation shields entire Kubernetes clusters from the (cloud) infrastructure using confidential computing. https://github.com/edgelesssys/constellation 38 comments
- GitHub - GoogleContainerTools/jib: 🏗 Build container images for your Java applications. https://github.com/GoogleContainerTools/jib 28 comments
- New from Google Cloud: Assured Open Source Software service | Google Cloud Blog https://cloud.google.com/blog/products/identity-security/introducing-assured-open-source-software-service 20 comments
- GitHub - sergiomarotco/Network-segmentation-cheat-sheet: Best practices for segmentation of the corporate network of any company https://github.com/sergiomarotco/Network-segmentation-cheat-sheet 19 comments
- GitHub - google/osv-scanner: Vulnerability scanner written in Go which uses the data provided by https://osv.dev https://github.com/google/osv-scanner 14 comments
- Shared success in building a safer open source community https://blog.google/technology/safety-security/shared-success-in-building-a-safer-open-source-community/ 10 comments
- Introduction to Bazel for Scala developers | by Rikito Taniguchi | VirtusLab | Feb, 2023 | Medium https://medium.com/virtuslab/introduction-to-bazel-for-scala-developers-2095a4a2a34d 10 comments
- GitHub - chainloop-dev/chainloop: Chainloop is an open source software supply chain control plane, a single source of truth for artifacts plus a declarative attestation crafting process. https://github.com/chainloop-dev/chainloop 8 comments
- GitHub - sigstore/sigstore-python: A Sigstore client in Python https://github.com/sigstore/sigstore-python 7 comments
- Introducing Package Analysis: Scanning open source packages for malicious behavior - Open Source Security Foundation https://openssf.org/blog/2022/04/28/introducing-package-analysis-scanning-open-source-packages-for-malicious-behavior/ 4 comments
- SBOM 101 - All the questions you were afraid to ask Software Bill of Materials https://sysdig.com/blog/sbom-101-software-bill-of-materials/ 3 comments
- Google Cloud CLI - Release Notes | Google Cloud CLI Documentation https://cloud.google.com/sdk/docs/release-notes 3 comments
- BeyondProd | Documentation | Google Cloud https://cloud.google.com/security/beyondprod/ 3 comments
- Don’t Panic: A Playbook for Handling Account Compromise with Sigstore | by Zachary Newman | sigstore https://blog.sigstore.dev/dont-panic-a-playbook-for-handling-account-compromise-with-sigstore-ee299dca5144 3 comments
- GitHub - chainguard-dev/ssc-reading-list: A reading list for software supply-chain security. https://github.com/chainguard-dev/ssc-reading-list 3 comments
Related searches:
Search whole site: site:slsa.dev
Search title: SLSA • Supply-chain Levels for Software Artifacts
See how to search.