Hardened at birth: How Wolfi enable secure, minimal workloads preloaded with supply chain data
The best kind of security is the kind you don't need to think about! And nothing helps you get there better than having workloads that are secure by default. Hardening the software supply chain is a complex task, there are many moving parts that interact to achieve the necessary transparency, data integrity, workload identity and authorization, and more. While there are tools and techniques to handle it all, nothing beats the convenience and accuracy of having these features enabled at build time. Join us to talk about all things supply chain like SBOMS, SLSA provenance, signing with sigstore, minimal images with low CVE counts, and even why Chainguard decided to create Wolfi, a brand new Linux (un)distribution.