Deep Dive: Paketo Buildpacks Bill of Materials: We’re Built Diff... Sophie Wigmore & Forest EckhardT
Deep Dive: Paketo Buildpacks Bill of Materials: We’re Built Different - Sophie Wigmore & Forest Eckhardt, VMware
The exploitation of vulnerabilities, like those in the recent high-profile SolarWinds attack, highlight the need for thorough security and compliance auditing. In the Cloud Native technology landscape, there are a variety of purpose-built solutions that help eliminate pain points along the software supply chain. One of these solutions, bill-of-materials (BOM), is an industry standard mechanism for surfacing metadata to be used for security auditing. Cloud Native Buildpacks (CNB) have native support for the BOM baked into the image metadata. The Paketo project, an OSS implementation of CNB, is taking the BOM a step further by populating it with dependency and package metadata from both the build process and the final image. This talk will explore how our approach to BOM provides more convenient and comprehensive insights into vulnerabilities, and how they can be mitigated.
To learn more about Cloud Foundry, The Proven Developer Experience For Kubernetes click here: https://www.cloudfoundry.org/
Watch video Deep Dive: Paketo Buildpacks Bill of Materials: We’re Built Diff... Sophie Wigmore & Forest EckhardT online without registration, duration hours minute second in high quality. This video was added by user Cloud Foundry 26 July 2021, don't forget to share it with your friends and acquaintances, it has been viewed on our site 253 once and liked it 5 people.