TestifySec co-founder and CEO Cole Kennedy discusses the gaps in software supply chain security and his experiences implementing software that led to the creation of TestifySec. Cole dives into the necessity of having an “observer” to attest to steps and security measures taken throughout the software development life cycle, and tools utilized in DevOps and DevSecOps workflows. Cole and members of the TestifySec team are presenting during CNCF’s KubeCon + CloudNativeCon 2024 conference in Paris. Connect with Cole and the TestifySec team at one of their KubeCon 2024 sessions (see below) or via TestifySec’s website https://www.testifysec.com.
TestifySec sessions at KubeCon + CloudNativeCon 2024 Paris:ca
– It’s Not Just About SBOMs: Perspectives on Cloud Native Supply Chain Security (panel)
– Operating a Production TUF Repository
– Bee-Lieve in the Metadata: Pollenating Build Attestations on Kubernetes with Tetragon and eBPF
https://colocatedeventseu2024.sched.com/#