Supply chains need to securely distribute artifacts from a source to one or more destinations. Assuring the integrity is signed, sealed and delivered is a key capability.
Category Archive: Artifacts
When describing mitigations to supply chain security incidents, it helps to categorize how different incidents may be initiated. Based on the category, different mitigation strategies are more likely to be effective.
As cloud-native development continues to automate the consumption of upstream content providers, the ability for automation to make […]
Adopting cloud-native development has become synonymous with consuming public content. To be productive, and not “reinvent the wheel”, […]
In this article I’ll offer a view for why any single new package manager isn’t a great idea, […]
Every long journey begins with the first step.
Developers are increasingly contributing to and consuming more upstream content. However, as every community effort has proven, risks […]
Sailing is known for having a unique language. Why are image references so vague?
The future of OCI Artifacts: Cross Repo & Registry Signing, Catalog Search and Eventing APIs are some of the next things to come – with your help
When authoring OCI Artifacts, should I use Annotations or Config.json?