Cyberweekly #192 - Integrity in the software supply chain
cyberweekly.substack.com
We sometimes talk about "securing the software supply chain" as if it will prevent bugs and issues, which isn't quite accurate. The increasing number of software supply chain systems are there to validate and verify the integrity of the supply chain. That means that you can be confident that the code that you wrote and the dependencies that you specified are in fact the same code that is in the built binary.
Cyberweekly #192 - Integrity in the software supply chain
Cyberweekly #192 - Integrity in the software…
Cyberweekly #192 - Integrity in the software supply chain
We sometimes talk about "securing the software supply chain" as if it will prevent bugs and issues, which isn't quite accurate. The increasing number of software supply chain systems are there to validate and verify the integrity of the supply chain. That means that you can be confident that the code that you wrote and the dependencies that you specified are in fact the same code that is in the built binary.