Slsa

• Software Supply Chain Security: SBOMs, Sigstore, Reproducible Builds, and Attestation · 2022-04-19

  An in-depth guide to securing the software supply chain: SBOMs, provenance, Sigstore, SLSA, reproducible builds, code signing, and operational best practices.