all InfoSec news
SLSA 1.0 delivers build provenance: What application security teams need to know
ReversingLabs Blog blog.reversinglabs.com
The latest version of the Supply-chain Levels for Software Artifacts (SLSA) framework for improving software supply chain security offers several improvements over the previous version, including better provenance guidelines and a system of "tracks" for implementation.
application application security artifacts build dev & devsecops framework guidelines latest provenance security security teams slsa software software supply chain software supply chain security software tampering supply supply chain supply chain security system teams version