How many times have we asked ourselves if it is a good idea to release to production on a Friday afternoon? Is the production software sufficiently robust and/or resilient to vulnerabilities? How can we detect and correct security problems in production? Better yet, how can we prevent such problems or attacks? In recent years the topic Software Supply Chain Security has taken on greater importance. Concepts like SBOMs, SLSA, Reproducible Builds, CI/CD Security are widely discussed to answer the previously posited questions. In this session we will discover what are these concepts and how you may apply them to your own projects.