#111: Ever since Alex Birsan published his Dependency Confusion article in February 2021, the concept of the software supply chain has come to the forefront. The supply chain should not be a new concept to people, but many seemed to have been caught off guard. Today we talk about Alex's article along with a new project that allows you to manage your supply chain security in Tekton.
https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610
https://security.googleblog.com/2021/06/verifiable-supply-chain-metadata-for.html
https://cloud.google.com/blog/products/identity-security/how-were-helping-reshape-software-supply-chain-ecosystem-securely
https://portswigger.net/daily-swig/software-supply-chain-attacks-everything-you-need-to-know
https://www.cisa.gov/publication/software-supply-chain-attacks
https://www.whitesourcesoftware.com/resources/blog/software-supply-chain-attacks/
https://deps.dev/
YouTube channel:
https://youtube.com/devopsparadox/
Books and Courses:
Catalog, Patterns, And Blueprints
https://www.devopstoolkitseries.com/posts/catalog/
Kubernetes Chaos Engineering With Chaos Toolkit And Istio
https://www.devopstoolkitseries.com/posts/chaos/
Canary Deployments To Kubernetes Using Istio and Friends
https://www.devopstoolkitseries.com/posts/canary/
Review the podcast on Apple Podcasts:
https://www.devopsparadox.com/review-podcast/
Slack:
https://www.devopsparadox.com/slack/
Connect with us at:
https://www.devopsparadox.com/contact/
DOP 262: Rethinking Project Success The Iterative Way
DOP 261: Visionary Views on Internal Developer Platforms and Portals with Port
DOP 260: Artificial Intelligence Will NOT Replace You. Devs Using AI Will.
DOP 259: Reimagining The Terminal Experience with Wave Terminal
DOP 258: Reflections on Startup Infrastructure Choices
DOP 257: Scaling at Adobe: Kubernetes, Global Networking, and Platform Innovation
DOP 256: KubeCon EU 2024 Review
DOP 255: What Is Developer Observability?
DOP 254: What Is Infrastructure As Code in DevOps?
DOP 253: Deconstructing The Platform Engineering Maturity Model
DOP 252: How To Upgrade Kubernetes
DOP 251: Demystifying Modern Message Brokers with Memphis.dev
DOP 250: From Godfather of DevOps to Godfather of AI
DOP 249: How To Choose Between Open Source and Commercial Software
DOP 248: How To Use ChatGPT for DevOps
DOP 247: Navigating the Nuances of Developer Relations
DOP 246: How To Become a DevOps Architect in 2024
DOP 245: Building Your Best Team Ever
DOP 244: What Every DevOps Should Learn in 2024
DOP 243: Looking Back on Our 2023 Predictions
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
A Prairie Home Companion: News from Lake Wobegon