Sign and Verify Software Artifacts using Sigstore Cosign #supplychain #security #softwareengineering

preview_player
Показать описание
Sign and verify software artifacts using Cosign super fast.
This video is a walkthrough of how to sign Binary Large Objects (BLOBs).
Sign your artifacts on Build pipelines and verify them before deployment.

This is a step in Supply Chain Security that companies and individuals should take into account.
  1. Yankee Maharjan
Рекомендации по теме
Sign and Verify 0:00:59

Sign and Verify Software Artifacts using Sigstore Cosign #supplychain #security #softwareengineering

Keyless signing and 0:18:13

Keyless signing and verification of artifact metadata with Witness and SPIRE - Cole Kennedy

How to Verify 0:03:56

How to Verify Signed Artifacts with a Kubernetes Admission Controller

Artifact Signing 101 0:27:19

Artifact Signing 101

Why You Can 0:19:28

Why You Can Still Get Hacked Even After Signing Your Software Artifacts - Gal Ofri

Using ARTiFACTS Verify 0:05:26

Using ARTiFACTS Verify to identify substandard and falsified medicines in the supply chain

Verification of software 1:26:45

Verification of software artifacts in the nuclear domain

Containerized Artifact Signature 1:37:26

Containerized Artifact Signature Verification & FinOps on GCP

Trusted Open Source 0:16:44

Trusted Open Source Artifacts on the Blockchain A Hands on Introduction to Pyrsia Adam Gardner

Demo of Generating 0:02:17

Demo of Generating GitLab SLSA Level 2 Build Artifact Attestation

Ask an OpenShift 1:18:23

Ask an OpenShift Admin | Ep 121 | Trusted Artifact Signer (TAS)

Large embedded software 0:05:51

Large embedded software projects: Managing Verification and Validation (V&V) certification artef...

Securing the Supply 0:34:23

Securing the Supply Chain with Sigstore Artifacts Signatures at Scale

Trust But Verify 0:54:07

Trust But Verify Digital Artifact Edition

Balancing Artifact Repositories 0:00:56

Balancing Artifact Repositories with Security - The AppSec Insiders Podcast

Intro to Artifact 0:06:53

Intro to Artifact Registry

Ask an OpenShift 1:18:49

Ask an OpenShift Admin | Ep 121 | Trusted Artifact Signer (TAS)

Reproducibly building artifacts 0:06:12

Reproducibly building artifacts that contain embedded signatures

Building SLSA 3 0:33:54

Building SLSA 3 Conforment Attestors for Artifacts Generated on GitHub- Ian Lewis & Asra Ali, Go...

Artifacts Management Page 0:02:59

Artifacts Management Page Demo

Artifact Integrity & 0:39:51

Artifact Integrity & Open Source Governance, the shift left way

Signing Artifacts - 1:11:56

Signing Artifacts - Feat. Notary, Sigstore, and Open Policy Containers (You Choose!, Ch. 3, Ep. 6)

Publish or Perish, 0:09:43

Publish or Perish, but do not Forget your Software Artifacts

Software artifacts in 0:57:14

Software artifacts in DevOps: Making packages work for you and your users