Hacker News
- Chainguard Images now available on Docker Hub https://www.chainguard.dev/unchained/chainguard-images-now-available-on-docker-hub 44 comments
- Open Container Initiative announces upcoming changes for registries https://www.chainguard.dev/unchained/oci-announces-upcoming-changes-for-registries 9 comments
- Software dark matter is the enemy of software transparency https://www.chainguard.dev/unchained/software-dark-matter-is-the-enemy-of-software-transparency 25 comments
- OCI announces upcoming changes for registries https://www.chainguard.dev/unchained/oci-announces-upcoming-changes-for-registries 4 comments kubernetes
- Chainguard Image Now Available for Kubectl https://www.chainguard.dev/unchained/chainguard-image-now-available-for-kubectl 8 comments kubernetes
- Building a Distro From The Ground Up https://www.chainguard.dev/unchained/building-wolfi-from-the-ground-up-and-announcing-arm64-support 7 comments linux
- Building a Distro From The Ground Up https://www.chainguard.dev/unchained/building-wolfi-from-the-ground-up-and-announcing-arm64-support 5 comments opensource
- Reflections on Trusting VEX (or when humans can improve SBOMs) https://www.chainguard.dev/unchained/reflections-on-trusting-vex-or-when-humans-can-improve-sboms 4 comments netsec
- Introducing Wolfi – the first Linux (Un)distro designed for securing the software supply chain https://www.chainguard.dev/unchained/introducing-wolfi-the-first-linux-un-distro 3 comments opensource
- Introducing Wolfi – the first Linux (Un)distro designed for securing the software supply chain https://www.chainguard.dev/unchained/introducing-wolfi-the-first-linux-un-distro 23 comments linux
- Introducing Wolfi – the first Linux (Un)distro designed for securing the software supply chain https://www.chainguard.dev/unchained/introducing-wolfi-the-first-linux-un-distro 14 comments kubernetes
- Introducing Wolfi – the first Linux (Un)distro designed for securing the software supply chain https://www.chainguard.dev/unchained/introducing-wolfi-the-first-linux-un-distro 11 comments programming
- Signing containers in AWS Codepipeline and Build using Sigstore's Cosign. https://chainguard.dev/posts/2022-01-07-cosign-aws-codepipeline 4 comments aws
- A Deep Dive into Fulcio - Sigstore's Root CA https://chainguard.dev/posts/2021-11-12-fulcio-deep-dive 6 comments kubernetes
- Zero-friction “keyless signing” with Kubernetes https://chainguard.dev/posts/2021-11-03-zero-friction-keyless-signing 3 comments programming
Linking pages
- Wolfi · GitHub https://github.com/wolfi-dev 86 comments
- Open source is not insecure | InfoWorld https://www.infoworld.com/article/3714445/open-source-is-not-insecure.html#tk.rss_security 71 comments
- We sign code now | Trail of Bits Blog https://blog.trailofbits.com/2022/11/08/sigstore-code-signing-verification-software-supply-chain/ 65 comments
- imjasonh (Jason Hall) · GitHub https://www.imjasonh.com/taxi/map 9 comments
- GitHub - chainguard-dev/apko: Build OCI images from APK packages directly without Dockerfile https://github.com/chainguard-dev/apko 8 comments
- Creating Safer Containerized PHP Runtimes with Wolfi - DEV Community https://dev.to/erikaheidi/creating-safer-containerized-php-runtime-environments-with-wolfi-1ioa 6 comments
- How to fix the military’s software SNAFU - Defense One https://www.defenseone.com/ideas/2024/04/how-fix-militarys-software-snafu/395489/ 3 comments
- Software developers have a supply chain security problem | InfoWorld https://www.infoworld.com/article/3663689/software-developers-have-a-supply-chain-security-problem.html 2 comments
- PyCon US 2022 Welcomes 8 Early-Stage Companies To Startup Row https://pycon.blogspot.com/2022/04/startup-row-2022-lineup-announcement.html 1 comment
- Nathan Smith https://www.nfsmith.ca/articles/one-month-in-oss/ 1 comment
- Software supply chain security is broader than SolarWinds and Log4J • TechCrunch https://techcrunch.com/2022/11/29/software-supply-chain-security-is-broader-than-solarwinds-and-log4j/ 1 comment
- The Audit of Git is Complete! – OSTIF.org https://ostif.org/the-audit-of-git-is-complete/ 1 comment
- News #1: Week 11-18th July - by Giuseppe Santoro https://t.co/91rb2Tkocg 1 comment
- Hashicorp Versus OpenTofu Gets Ugly - Security Boulevard https://securityboulevard.com/2024/04/hashicorp-versus-opentofu-gets-ugly/ 1 comment
- OpenBSD on the Framework laptop - thomas strömberg https://libthom.so/posts/2022/openbsd-framework-laptop/ 0 comments
- Why the Software Supply Chain Needs More Security | Future https://future.com/securing-the-software-supply-chain/ 0 comments
- Cloud Native Trends 2022 - Civo.com https://www.civo.com/blog/cloud-trends-2022 0 comments
- Google launches ‘open-source maintenance crew’ | VentureBeat https://venturebeat.com/2022/05/12/google-open-source-maintenance-crew/ 0 comments
- Chainguard raises $50M Series A for supply chain security https://techcrunch.com/2022/06/02/chainguard-raises-50m-to-guard-supply-chains/ 0 comments
- One Ultimate Challenge in Software Supply Chain https://yolocs.dev/one-ultimate-challenge-in-software-supply-chain 0 comments