Episode #497 of NoLimitSecu Focuses on Securing the Software Supply Chain

Episode #497 of NoLimitSecu is dedicated to securing the software supply chain with Christophe Tafani-Dereeper. Several technical references are mentioned, including the use of TUF and in-toto to secure the publication of Datadog agent integrations, as well as various open-source tools and projects such as GuardDog, malicious-software-packages-dataset, supply-chain-firewall, cosign, SLSA, deps.dev, Sigstore, and OpenSSF projects like Scorecard and osv-scanner. These tools aim to strengthen the security of software supply chains by identifying and mitigating risks associated with dependencies and malicious packages.