Sign up to save your podcasts
Or
Share Software Supply Chain Security, with Priya Wadhwa
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Software Supply Chain Security, with Priya Wadhwa
The idea of software supply chain security rocketed into the public consciousness in the last year, with the news that US government agencies had been breached. Priya Wadhwa is a software engineer at Google working on open source security, including projects to secure and verify container deployments. She outlines what is being done to make sure this doesn’t happen to you.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
- Virgin Galactic launch
- NBC News
- BBC News
- Blue Origin launch
- NBC News
- BBC News
- Rocket scene from Austin Powers: The Spy Who Shagged Me
- The memes
- Google Cloud Container Security webinar
- Register for Google Cloud Next 2021
- Google Cloud IDS
- Windows Server support for Anthos on-prem
- Multi-Cluster Ingress for GKE
- CVE-2021-22555: Kernel code execution through Netfilter bug
- CVE-2021-25740: Endpoint & EndpointSlice permissions allow cross-Namespace forwarding
- CVE-2021-32690: Helm repository credentials passed to alternate domain
- Attacks on Argo Workflows discovered by Intezer
- Sysdig acquires Apolicy; Apolicy acquired by Sysdig
- CockroachDB Operator for Kubernetes
- Automatic remediation of Kubernetes nodes at Cloudflare
- Sciuro
- Kured
- CNCF App Delivery TAG publishes operator whitepaper
- Software supply chain
- Know, Prevent, Fix
- Reproducible builds
- Debian Project
- SolarWinds hack
- US Executive Order on Improving the Nation’s Cybersecurity
- Binary Authorization
- Provenance, in art and software
- in-toto
- “Farm to table”
- sigstore
- Announcement blog
- cosign
- Announcement blog
- Dan Lorenc’s blog
- Connaisseur
- Rekor
- Fulcio
- Key signing ceremony:
- Dan Lorenc on Episode 152
- Announcement blog
- Video
- Tekton
- Tekton Chains
- Announcement blog, by Priya & Dan
- SBOM (Software Bill of Materials)
- Open Source Insights
- Announcement blog
- Nine Inch Nails’ Year Zero ARG
- Scorecards
- Announcement blog
- v2 blog
- SLSA
- Announcement blog
- GitHub
- SupplyChainSecurityCon
- sigstore Slack channel
- Priya Wadhwa on Twitter
View all episodes
By Abdel Sghiouar, Kaslin Fields
4.8
180180 ratings
The idea of software supply chain security rocketed into the public consciousness in the last year, with the news that US government agencies had been breached. Priya Wadhwa is a software engineer at Google working on open source security, including projects to secure and verify container deployments. She outlines what is being done to make sure this doesn’t happen to you.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
- Virgin Galactic launch
- NBC News
- BBC News
- Blue Origin launch
- NBC News
- BBC News
- Rocket scene from Austin Powers: The Spy Who Shagged Me
- The memes
- Google Cloud Container Security webinar
- Register for Google Cloud Next 2021
- Google Cloud IDS
- Windows Server support for Anthos on-prem
- Multi-Cluster Ingress for GKE
- CVE-2021-22555: Kernel code execution through Netfilter bug
- CVE-2021-25740: Endpoint & EndpointSlice permissions allow cross-Namespace forwarding
- CVE-2021-32690: Helm repository credentials passed to alternate domain
- Attacks on Argo Workflows discovered by Intezer
- Sysdig acquires Apolicy; Apolicy acquired by Sysdig
- CockroachDB Operator for Kubernetes
- Automatic remediation of Kubernetes nodes at Cloudflare
- Sciuro
- Kured
- CNCF App Delivery TAG publishes operator whitepaper
- Software supply chain
- Know, Prevent, Fix
- Reproducible builds
- Debian Project
- SolarWinds hack
- US Executive Order on Improving the Nation’s Cybersecurity
- Binary Authorization
- Provenance, in art and software
- in-toto
- “Farm to table”
- sigstore
- Announcement blog
- cosign
- Announcement blog
- Dan Lorenc’s blog
- Connaisseur
- Rekor
- Fulcio
- Key signing ceremony:
- Dan Lorenc on Episode 152
- Announcement blog
- Video
- Tekton
- Tekton Chains
- Announcement blog, by Priya & Dan
- SBOM (Software Bill of Materials)
- Open Source Insights
- Announcement blog
- Nine Inch Nails’ Year Zero ARG
- Scorecards
- Announcement blog
- v2 blog
- SLSA
- Announcement blog
- GitHub
- SupplyChainSecurityCon
- sigstore Slack channel
- Priya Wadhwa on Twitter
More shows like Kubernetes Podcast from Google
View all
Hanselminutes with Scott Hanselman
377 Listeners
Software Engineering Radio - the podcast for professional software developers
272 Listeners
The Changelog: Software Development, Open Source
282 Listeners
The Cloudcast
152 Listeners
Thoughtworks Technology Podcast
42 Listeners
Talk Python To Me
590 Listeners
Software Engineering Daily
626 Listeners
AWS Podcast
203 Listeners
Data Engineering Podcast
141 Listeners
Syntax - Tasty Web Development Treats
984 Listeners
Practical AI
189 Listeners
The Stack Overflow Podcast
64 Listeners
The Real Python Podcast
140 Listeners
Oxide and Friends
47 Listeners
The Pragmatic Engineer
52 Listeners