Source: www.docker.com
Secure Software Supply Chain Best PracticesCategory: Software, Security, Microsoft, Docker, containerization, github, automation
Last month, the Cloud Native Computing Foundation (CNCF) Security Technical Advisory Group published a detailed document about Software Supply Chain Best Practices. Supply chain security has gone from a niche concern to something that makes headlines, in particular after the SolarWinds “Sunburst” attack last year.
Every time you use software that you didn’t write yourself, often open source software that you use in your applications, you are trusting both that the software you added is what you thought it is, and that it is trustworthy not hostile.
At Docker we believe in the importance of a secure software supply chain and we are going to bring you simple tools that improve your security.
We have more plans to improve security for developers and would love your feedback and ideas in our roadmap repository.
Every time you use software that you didn’t write yourself, often open source software that you use in your applications, you are trusting both that the software you added is what you thought it is, and that it is trustworthy not hostile.
At Docker we believe in the importance of a secure software supply chain and we are going to bring you simple tools that improve your security.
We have more plans to improve security for developers and would love your feedback and ideas in our roadmap repository.
Related Articles
Community Partners
DevOps Careers