Skip to main content

Join Our Upcoming OpenSSF Tech Talk: Proactive Supply Chain Security with GUAC

By May 16, 2024Blog

Join our upcoming Tech Talk, “Proactive Supply Chain Security with GUAC,” on June 6, 2024, at 10 AM PT/1 PM ET, as we discuss proactive vulnerability management and software supply chain security.

With cyber threats evolving rapidly, organizations must adopt proactive measures to protect their software from vulnerabilities. The Graph for Understanding Artifact Composition (GUAC), an Open Source Security Foundation (OpenSSF) Incubating Project, offers a solution to this challenge. GUAC is a software supply chain observability tool that empowers organizations to proactively address critical vulnerabilities. 

During this Tech Talk, you will have the opportunity to meet the GUAC maintainers and organizations that have implemented GUAC in various stages. Gain insights into the project’s recent release, roadmap plans, and learn how you can contribute to this innovative tool. 

Mark Your Calendar

What: OpenSSF Tech Talk: Proactive Supply Chain Security with GUAC

Date: Jun 6, 2024

Time: 10 AM PST

Duration: 1 hour

Location: Virtual

Cost: Free!

Key topics of discussion will include:

  • Introduction to GUAC and its significance in software supply chain security
  • Features and capabilities of GUAC, including its ability to ingest SBOMs, SLSA attestations, vulnerability reports, VEX, OpenSSF Scorecard, and more
  • How GUAC identifies the “blast radius” of vulnerabilities and helps in devising tailored patch plans
  • Mapping threats to determine risk and minimize the window of exposure

Register Now!

Registration for this event is free. Whether you are a developer, security professional, or open source enthusiast, this event is your gateway to understanding how GUAC can help you stay ahead of cybersecurity threats. Register for this Tech Talk here