Software supply chain attacks have increased 650% in 2021! The Supply chain Levels for Software Artifacts (SLSA, pronounced “salsa”) framework for security and integrity of software artifacts through a supply chain provides detailed guidelines on securing a software supply chain. In this livestream, Jim will discuss SLSA, and then demonstrate how you can take an insecure image and add signing and verification of the image using Cosign and Kyverno to comply with SLSA guidelines.