all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Level-up Container Security: 4 Open-Source Tools for Secure Software Supply Chain

Add to bookmarks
Sept. 5, 2023, 8:21 p.m. | Josh Duffney

DEV Community dev.to

In a thought-provoking presentation by Kelsey Hightower, he compares the act of plugging in a random USB key discovered at a coffee shop to the common practice of pulling code from GitHub.


What's funny is that while people might give a suspicious look to someone plugging in a random USB key, they often don't think twice about grabbing a container image from a public registry and tossing it into production. But they really should. Lately, there have been a bunch …

act code coffee container containers container security devops github kelsey hightower key opensource people practice presentation random secure software secure software supply chain security shop software softwareengineering software supply chain supply supply chain thought tools usb

Visit resource

More from dev.to / DEV Community

How to connect to a Virtual Machine and install Windows Server 2 hours ago | dev.to
azure connect data data protection +24
Symfony Station Communiqué — 26 April, 2024. A look at Symfony, Drupal, PHP, Cybersecurity, and … 3 hours ago | dev.to
april big big tech communities +12
📸🔒GitHub: protect your email from spammers with this GitHub privacy setting 4 hours ago | dev.to
beginners can click commit +13
Crack the Code Like Caesar: Build Your Own Secret Message Encrypter! [Python code included] 7 hours ago | dev.to
build caesar cipher code +14
How to calculate the distance between Kyoto and Tokyo using a PostgreSQL database? 7 hours ago | dev.to
container database docker extensions +11
Impact of Fragmented PostgreSQL Infrastructure on Performance, Scalability, and Security 8 hours ago | dev.to
availability can components configuration +20
Bytes of Brilliance: A Hackathon Journey to Eco-Friendly Ecommerce 9 hours ago | dev.to
ai-powered coding commerce discuss +17
Bytes of Brilliance: A Hackathon Journey to Eco-Friendly Ecommerce 9 hours ago | dev.to
ai-powered coding commerce discuss +17
keepsecret.py: a simple way to encrypt secret files in your repository 10 hours ago | dev.to
account beyond cases data +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Lead Technical Product Manager - Threat Protection

@ Mastercard | Remote - United Kingdom
View on infosec-jobs.com

Data Privacy Officer

@ Banco Popular | San Juan, PR
View on infosec-jobs.com

GRC Security Program Manager

@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
View on infosec-jobs.com

Cyber Security Engineer

@ ASSYSTEM | Warrington, United Kingdom
View on infosec-jobs.com

Privacy Engineer, Technical Audit

@ Meta | Menlo Park, CA
View on infosec-jobs.com
View more jobs