Cloud Native Live: SLSA with Cosign and Kyverno to secure software delivery

CNCF Online Programs
Wed, Oct 20, 9:00 AM (PDT)

About this event

Software supply chain attacks have increased 650% in 2021! The Supply chain Levels for Software Artifacts (SLSA, pronounced “salsa”) framework for security and integrity of software artifacts through a supply chain provides detailed guidelines on securing a software supply chain. In this livestream, Jim will discuss SLSA, and then demonstrate how you can take an insecure image and add signing and verification of the image using Cosign and Kyverno to comply with SLSA guidelines.

Speaker

  • Jim Bugwadia

    Jim Bugwadia

    Nirmata

    Co-Founder and CEO


  • Organizers

  • Ihor Dvoretskyi

    Ihor Dvoretskyi

    Cloud Native Computing Foundation

    Organizer

    View Profile
  • Kristi Tan

    Kristi Tan

    CNCF

    Organizer

    View Profile
  • Chris Aniszczyk

    Chris Aniszczyk

    Linux Foundation (CNCF)

    Organizer

    View Profile
  • Libby Schulze

    Libby Schulze

    CNCF

    Organizer

    View Profile