ActiveState Software Attestations Early Access Wrap Up20230601134340

ActiveState Software Attestations Early Access Wrap Up

Dana CraneLast Updated: June 1, 2023Built artifact attestation, in-toto, Provenance attestation, SLSA, Verification Summary Attestation, VSA
ActiveState's Software Attestation Early Access Program provides a hands-on introduction on how to work with Attestations. See how....
Our Software Supply Chain Security Survey Is Back. See How You Stack Up!20230525094813

Our Software Supply Chain Security Survey Is Back. See How You Stack Up!

Dana CraneLast Updated: May 25, 2023provenance, SBOMs, Securing the software supply chain, SLSA, Software supply chain attack vectors, software supply chain security, State of Software Supply Chain Security survey
Software supply chain security has changed since 2021. Take the 2023 State of Supply Chain Security survey to help us all understand how....
How to Mitigate the 3 Most Common Python Supply Chain Threats20230511094703

How to Mitigate the 3 Most Common Python Supply Chain Threats

Dana CraneLast Updated: May 11, 2023build reproducibility, python, Python supply chain security, setup.py, software supply chain security
Learn which are the 3 most common supply chain threats in the Python ecosystem, and how to reduce the risk they pose to your software....
Getting Started on the Journey to a Secure Software Supply Chain20230420113528

Getting Started on the Journey to a Secure Software Supply Chain

Dana CraneLast Updated: April 20, 2023software supply chain attacks, software supply chain security, Software Supply Chain Tooling, supply chain security
Learn how to recognize the first stage of your Software Supply Chain Security Journey, and how to overcome the anarchy that characterizes it....
How to Distinguish Human Text From AI Text – Using Python20230413102427

How to Distinguish Human Text From AI Text – Using Python

Dana CraneLast Updated: April 13, 2023AI detection, AI generated text, ChatGPT, DetectGPT, GTPzero, Python for AI Detection
Can Python be used to reliably distinguish AI-generated text from human-generated text? Try out these two Python projects and find out....
How to Avoid Software Supply Chain Fines20230330121005

How to Avoid Software Supply Chain Fines

Dana CraneLast Updated: March 31, 2023Cybersecurity, National Cybersecurity Strategy, Software security litigation, software supply chain security, Software supply chain security legislation
The US administration is proposing legislation that will hold vendors liable for non-secure software. Find out what it means & what can you do to avoi...
Introducing SLSA 1.0: Securing the Code You Import & Build20230323112014

Introducing SLSA 1.0: Securing the Code You Import & Build

Dana CraneLast Updated: March 23, 2023Secure Levels for Software Artifacts, SLSA, software supply chain attacks, software supply chain security, supply chain security
The SLSA 1.0 specification provides verifiable controls and best practices to help you secure your software supply chain. Learn how....
Why Software Bill of Materials (SBOM) Require Attestations20230309092909

Why Software Bill of Materials (SBOM) Require Attestations

Dana CraneLast Updated: March 9, 2023Attestations, Provenance attestation, SBOM, Software Attestations, Software bill of materials, software supply chain security, SPDX
SBOMs won't secure your software supply chain because they lack attestation info about how components were sourced and built. Learn more....
Easy Python Dependency Management With Shareable Environments20230302114253

Easy Python Dependency Management With Shareable Environments

Dana CraneLast Updated: March 3, 2023conda, pip, poetry, python, Python dependency management, Python environment management, Python package management, Python virtual environments
Learn how shareable development environments can finally make Python dependency management and environment management simple and easy....
Five Stages For a Secure Software Supply Chain20230223150940

Five Stages For a Secure Software Supply Chain

Dana CraneLast Updated: March 3, 2023Executive Order Mandate, Secure Levels for Software Artifacts, SLSA, software supply chain attacks, software supply chain security, supply chain security, US EOM 14028
Learn how to navigate the five stages to securing your software supply chain and meeting US government software supply chain requirements....
Previous
12313
Next