Google’s latest framework aims to prevent SolarWinds-like supply chain attacks
Google has unveiled a new framework called Supply chain Levels for Software Artifacts, or SLSA (pronounced "salsa").
The intention of SLSA is to help prevent the growing number of devastating supply chain attacks in recent years—such as the SolarWinds and CodeCov hacks.
Google describes SLSA as "an end-to-end framework for ensuring the integrity of software artifacts throughout the software supply chain."
The company says that SLSA is inspired by its own...
Recent Comments