Businesses need a well-managed supply chain and secure software delivery pipelines to mitigate the inherent risks that are critical to realizing the benefits of open source software. But what does it take to do so?
Read More
Learn how to securely deploy docker container images in a hybrid configuration spanning on-premises and public cloud.
Walk away learning how to:
- Initiate builds with Google Cloud Build
- Manage the binaries with JFrog Artifactory
- Scan for security vulnerabilities and license compliance with JFrog Xray
- Deploy containers through test, staging and production using Google Cloud Deploy
Learn how to securely deploy docker container images in a hybrid configuration spanning on-premises and public cloud.
Walk away learning how to:
- Initiate builds with Google Cloud Build
- Manage the binaries with JFrog Artifactory
- Scan for security vulnerabilities and license compliance with JFrog Xray
- Deploy containers through test, staging and production using Google Cloud Deploy
Join on December 2 to discuss, collaborate, and contribute to SIG Interoperability and the broader CI/CD ecosystem in CDF.
Watch all the SupplyChainSecurityCon talks online!
SupplyChainSecurityCon is a new, vendor-neutral conference for security practitioners, open source developers and those interested in software supply chain security hosted by CNCF + CDF. Due to the uptick in supply chain attacks, this event is to bring the community together to discuss supply chain threats, best practices, mitigation tactics including up and coming frameworks and specifications.
The event will include session presentations, panel discussions, lightning talks and opportunities for networking.
Who Should Attend
All developers and leaders interested in securing the software supply chain.
Location
Virtual + Los Angeles
Software supply chain attacks are becoming a big problem. Whether you’re trying to prevent these attacks, responding to an ongoing one or recovering from one, knowing what is happening in your CI/CD pipeline is critical.
