Description:
Macaron is a supply chain security analysis tool from Oracle Labs, which focuses on the build integrity of an artifact and the artifact dependencies. It analyzes the CI/CD configurations of a project based on properties derived from the Supply Chain Levels for Software Artifacts (SLSA) specification, and assesses a software component's level of SLSA compliance. Macaron also enforces customizable policies that are checked against its analysis results to detect violations of an organizational security posture.
In this webinar, we will begin with an overview of Supply Chain Levels for Software Artifacts (SLSA) and its benefits. Next, we will demo Macaron to analyze a project and its dependencies. We will also present policies to detect violations of an organizational security posture based on Macaron's analysis results.
Presented by:
- Behnaz Hassanshahi, Principal Researcher, Oracle Labs - Development
Webcast:
Registration is required.
You MUST register using the email used for your CCC account login. Each registration link is unique to the emailid approved for the event and is valid on a single device only - DO NOT share the unique Zoom link received after registration is complete.
Once registered, you can save the "Add to ICS" file from the Zoom confirmation page.
The replay and slide deck will be available from this event posting within 24 hours following the live session.
Contact Email:
tara.van.cleave@oracle.com
