Join our upcoming Tech Talk, “Proactive Supply Chain Security with GUAC,” on June 6, 2024, at 10 AM PT/1 PM ET, as we discuss proactive vulnerability management and software supply chain security.
With cyber threats evolving rapidly, organizations must adopt proactive measures to protect their software from vulnerabilities. The Graph for Understanding Artifact Composition (GUAC), an Open Source Security Foundation (OpenSSF) Incubating Project, offers a solution to this challenge. GUAC is a software supply chain observability tool that empowers organizations to proactively address critical vulnerabilities.Â
During this Tech Talk, you will have the opportunity to meet the GUAC maintainers and organizations that have implemented GUAC in various stages. Gain insights into the project’s recent release, roadmap plans, and learn how you can contribute to this innovative tool.Â
Mark Your Calendar
What: OpenSSF Tech Talk: Proactive Supply Chain Security with GUAC
Date: Jun 6, 2024
Time: 10 AM PST
Duration: 1 hour
Location: Virtual
Cost: Free!
Key topics of discussion will include:
- Introduction to GUAC and its significance in software supply chain security
- Features and capabilities of GUAC, including its ability to ingest SBOMs, SLSA attestations, vulnerability reports, VEX, OpenSSF Scorecard, and more
- How GUAC identifies the “blast radius” of vulnerabilities and helps in devising tailored patch plans
- Mapping threats to determine risk and minimize the window of exposure
Register Now!
Registration for this event is free. Whether you are a developer, security professional, or open source enthusiast, this event is your gateway to understanding how GUAC can help you stay ahead of cybersecurity threats. Register for this Tech Talk here.Â