FYI: Software Supply Chain Security Paper via CNCF Security TAG
The CNCF Security TAG put together an excellent resource:
This is especially timely due to the recent US EO around cybersecurity. A lot of kudos goes to the Security TAG in building a fantastic community that continues to produce extremely useful educational materials.
Chris Aniszczyk (@cra)