Securing the Software Supply Chain
Secure your entire software supply chain, including the code you write, the libraries you use, and the platforms you run on.</b> Modern software relies on a collection of original code, libraries, open source tools, plugins, packages, and platforms. Securing the Software Supply Chain</i> teaches you to secure those dependencies to the same rigorous standards as the rest of your systems. Inside this insightful guide, you’ll learn how to: Understand your whole software supply chain</li> Model threats to your software development lifecycle</li> Implement controls to preempt and protect against attack</li> Use cutting-edge security tools and scalable processes</li> Organize and plan improvements</li> Supply chain tools like Sigstore, in-toto, and Kyverno</li> </ul> It’s easy to be blissfully unaware of the dangerous vulnerabilities lurking in your software systems. This book reveals techniques securing all components of the software delivery lifecycle.
