Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

content: Update mitigation section for the Dependency Confusion threat. #1226

Open
wants to merge 2 commits into
base: main
Choose a base branch
from

Conversation

meder
Copy link
Contributor

@meder meder commented Oct 29, 2024

Documenting a SLSA-native and build trackccentric mitigation for Dependency Confusion attacks (#1181)

Would love to hear thoughts/opinions on the best way to reflect differing levels of adoption / maturity in native provenance verification across different ecosystems.

Signed-off-by: Meder Kydyraliev <1212257+meder@users.noreply.github.com>
Copy link

netlify bot commented Oct 29, 2024

Deploy Preview for slsa ready!

Name Link
🔨 Latest commit a75a5fe
🔍 Latest deploy log https://app.netlify.com/sites/slsa/deploys/6720633b886c7d00088fb107
😎 Deploy Preview https://deploy-preview-1226--slsa.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@meder meder changed the title Update mitigation section for the Dependency Confusion threat. content: Update mitigation section for the Dependency Confusion threat. Oct 29, 2024
Signed-off-by: Meder Kydyraliev <1212257+meder@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
Status: 🆕 New
Development

Successfully merging this pull request may close these issues.

1 participant