[HN Gopher] Defending software build pipelines from malicious at...
       ___________________________________________________________________
        
       Defending software build pipelines from malicious attack
        
       Author : gjvc
       Score  : 8 points
       Date   : 2021-02-03 20:45 UTC (2 hours ago)
        
 (HTM) web link (www.ncsc.gov.uk)
 (TXT) w3m dump (www.ncsc.gov.uk)
        
       | justicezyx wrote:
       | Google team had tackled this problem for GCP and the internal
       | technical infrastructure: [1].
       | 
       | It was a surprisingly hard problem, because the enforcement of
       | build security is so widely effecting that to plug the little
       | holes becomes a major company wide effort.
       | 
       | [1] https://cloud.google.com/security/binary-authorization-
       | for-b...
        
       ___________________________________________________________________
       (page generated 2021-02-03 23:02 UTC)