Artwork

Konten disediakan oleh Kabir. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh Kabir atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.
Player FM - Aplikasi Podcast
Offline dengan aplikasi Player FM !

GUAC for Startup's Software Supply Chain

18:53
 
Bagikan
 

Manage episode 448045461 series 3605659
Konten disediakan oleh Kabir. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh Kabir atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.

This episode is about GUAC, which stands for Graph for Understanding Artifact Composition, is an open-source tool that helps software developers understand their software supply chain. By creating a database of software packages and their dependencies, GUAC can identify potential vulnerabilities and trace the path of those vulnerabilities through the supply chain. This allows developers to quickly understand which of their packages are affected and take action to mitigate those risks. The GUAC ecosystem includes a command-line interface, a visualizer (under development), and a GraphQL API for querying data. The source provides a demo that showcases GUAC's features, including identifying vulnerabilities and marking packages as malicious.

Send us a text

Podcast:
https://kabir.buzzsprout.com
YouTube:
https://www.youtube.com/@kabirtechdives
Please subscribe and share.

  continue reading

81 episode

Artwork
iconBagikan
 
Manage episode 448045461 series 3605659
Konten disediakan oleh Kabir. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh Kabir atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.

This episode is about GUAC, which stands for Graph for Understanding Artifact Composition, is an open-source tool that helps software developers understand their software supply chain. By creating a database of software packages and their dependencies, GUAC can identify potential vulnerabilities and trace the path of those vulnerabilities through the supply chain. This allows developers to quickly understand which of their packages are affected and take action to mitigate those risks. The GUAC ecosystem includes a command-line interface, a visualizer (under development), and a GraphQL API for querying data. The source provides a demo that showcases GUAC's features, including identifying vulnerabilities and marking packages as malicious.

Send us a text

Podcast:
https://kabir.buzzsprout.com
YouTube:
https://www.youtube.com/@kabirtechdives
Please subscribe and share.

  continue reading

81 episode

Alle afleveringen

×
 
Loading …

Selamat datang di Player FM!

Player FM memindai web untuk mencari podcast berkualitas tinggi untuk Anda nikmati saat ini. Ini adalah aplikasi podcast terbaik dan bekerja untuk Android, iPhone, dan web. Daftar untuk menyinkronkan langganan di seluruh perangkat.

 

Panduan Referensi Cepat