siiky
2023/02/04
2023/02/04
2023/02/07
talk,security,cryptography
https://fosdem.org/2023/schedule/event/security_where_does_that_code_come_from
Building a Secure Software Supply Chain with GNU Guix
Talk about how the Guix project solved the software supply-chain security problem for their project, by using cryptography, and git's signing ability -- but not only! because that's not enough.
Would be cool if they (eventually) published some tools not Guix-specific.