Software Delivery Shield | C2C Community

Software Delivery Shield

  • 28 October 2022
  • 3 replies
  • 21 views

Userlevel 5
Badge +3

The biggest announcement from Google Cloud Next 2022 from a DevOps perspective is the general availability of the Software Delivery Shield security solution. Check out the blog post about it here

https://cloud.google.com/blog/products/devops-sre/introducing-software-delivery-shield-from-google-cloud

and let us know what you think of this suite of tools designed as an end-to-end solution to protect software from security attacks along the entire software supply chain.

What do you think about this toolset?


3 replies

Userlevel 7
Badge +15

@ScottBeeker was featured here: https://www.techtarget.com/searchsoftwarequality/news/252526032/Google-Software-Delivery-Shield-braces-supply-chain-security - and was talking about Software Delivery Shield. 

 

Scott, meet @jennworks40 😎

Would you like to expand a bit more on SDS? It would be great to hear your thoughts

Userlevel 5
Badge +3

Hi Scott, nice to meet you! I’d love to hear (read) your insights here!

Userlevel 3
Badge

@ScottBeeker was featured here: https://www.techtarget.com/searchsoftwarequality/news/252526032/Google-Software-Delivery-Shield-braces-supply-chain-security - and was talking about Software Delivery Shield. 

 

Scott, meet @jennworks40 😎

Would you like to expand a bit more on SDS? It would be great to hear your thoughts

 


Hello @jennworks40 👋,
Supply chain attacks on open source software packages increased by 650% in 2021.
The biggest and most well known example of this in the wild is the Log4J vulnerability.
Components  within Software Delivery System such as Artifact Registry and Container Registry would have  prevented such a vulnerability.
Almost every organization and software team in one form or another depend on opensource software.
As we get smarter so do the bad guy’s, the Software Delivery Shield along with proper backups are a step in the right direction moving forward for any development team.



https://cloud.google.com/software-supply-chain-security/docs/sds/overview
https://techmonitor.ai/technology/cybersecurity/log4j-vulnerability-cyber-crime


 

Reply