Learn how to build packages with SLSA 3 provenance using GitHub Actions.
Software Supply Chain Security with Google Software Delivery Shield
2023 Trail of Bits Blog
Achieving SLSA 3 Compliance with GitHub Actions and Sigstore for Go modules - The GitHub Blog
Newsletter of Carlos Santana — Issue #34, by Carlos Santana
Blog
Open Source Summit North America 2022: Full Schedule
Newsletter of Carlos Santana — Issue #34, by Carlos Santana
GitHub - goreleaser/goreleaser-example-slsa-provenance: A demonstration of showing how to use 💃SLSA 3 Generic Generator with GoReleaser to release artifacts while generating signed SLSA provenance
Google Online Security Blog: April 2022
Jose Palafox, Author at The GitHub Blog
GitHub - slsa-framework/slsa-github-generator: Language-agnostic SLSA provenance generation for Github Actions
actions/.github/workflows/check-standard.yaml at v2-branch · r-lib/actions · GitHub
Everybody SLSA!!. How Google Cloud can help you secure…, by Stuart Barnett, Appsbroker CTS Google Cloud Tech Blog