Sveriges mest populära poddar

Open Source Security

Episode 329 - Signing (What is it good for)

31 min•27 juni 2022

Josh and Kurt talk about what the actual purpose of signing artifacts is. This is one of those spaces where the chain of custody for signing content is a lot more complicated than it sometimes seems to be. Is delivering software over https just as good as using a detached signature? How did we end up here, what do we think the future looks like? This episode will have something for everyone to complain about!

Show Notes

Fler avsnitt av Open Source Security

AIBOM, CBOM, and HBOM with Allan Friedman

29 juni•35 min

Packagist and Composer security with Jordi Boggiano

22 juni•35 min

Sustaining Open VSX with Mike and Thabang

15 juni•37 min

Hacking your CI/CD with François Proulx

8 juni•36 min

Open source verification with Sal Kimmich

1 juni•32 min

Vulnerability disclosure with Casey Ellis

25 maj•38 min

F-Droid the open app store with Hans

18 maj•37 min

Open source is critical infrastructure with Kat Cosgrove

11 maj•38 min

How to actually test a disaster plan with David Bernstein

Open Source Pledge with Vlad-Stefan Harbuz

27 apr.•35 min

Open Source Security med Josh Bressers finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.