Yash Pimple’s NDC Copenhagen session cuts through the hype around software supply chain security, breaking down why SLSA, SBOM and Sigstore matter and how they collaborate to keep your builds trustworthy. Expect a no-nonsense tour of real-world pitfalls—dependency confusion, rogue deployments and more—paired with open-source tools that detect, prevent and respond to these risks.
By the end, you’ll have a solid grasp of key frameworks, hands-on strategies to harden your pipelines, and the confidence to roll out defense-in-depth measures that ensure your software is both secure and verifiably legit.
Watch on YouTube
Top comments (0)