Modern apps rely heavily on open source, but this agility brings security risks. Learn how to proactively defend your cloud-native software supply chain with SBOMs (inventory your components), VEX (actionable vulnerability insights), and CNCF projects like sigstore & GUAC (establish trust & visibility). Gain hands-on knowledge of integrating these tools, learn industry best practices, and explore real-world use cases. Join us to build a more secure cloud-native future!

Key Takeaways:

Technical Implementation: Gain knowledge of how to integrate SBOMs, VEX, sigstore, and guac into your cloud-native development workflows.
Best Practices: Learnpractices for securing your software supply chain from code commit to production deployment.