Session: Panel: Open Source Compliance & Security
In this panel, we will discuss all things open source supply chain compliance and security: from SBOMs in general to ClearlyDefined. We will also be discussing principles for safer developer ecosystems. We’ll bring three different perspectives: from CISA (Cybersecurity and Infrastructure Security Agency) and the latest efforts by the US government to secure open source; from GitHub, the largest open source developer platform; and from Stacklock, one of the most exciting startups in this space, being led by the founders of Kubernetes and Sigstore.