all InfoSec news
Software supply chain security practices are maturing — but it's a work in progress
Malware Analysis, News and Indicators - Latest topics malware.news
Many software supply chain security practices have been widely adopted, but there is still a lot of room for improvement, according to a recent OpenSSF survey of 167 software professionals.
The survey, put forward by the Eclipse Foundation, the Rust Foundation, OpenSSF and software supply chain security tool vendor Chainguard, focused on the Supply-chain Levels for Software Artifacts, or SLSA. Their goal was to assess the extent to which the participating organizations used SLSA and other software supply chain security …
chainguard eclipse foundation forward foundation improvement openssf practices professionals progress rust rust foundation security slsa software software supply chain software supply chain security supply supply chain supply chain security survey the eclipse foundation tool vendor work