Mike Fiedler, PyPI Safety and Security Engineer for the Python Software Foundation, joins the vBrownBag to talk about risks of software supply chain insecurity, and the concrete actions that software consumers & producers can take to make their software safer.
Chapters:
- 02:12 Introducing Mike
- 07:20 What is software supply chain security?
- 08:45 Recent examples of software supply chain compromises
- 12:15 How do we prevent compromises in open source software?
- 18:57 Software consumers & software producers in the software supply chain
- 21:32 Recommended practices for software consumers
- 42:40 Recommended practices for software producers
- 50:15 Where to find Mike, and audience questions
Resources: