Supply Chain Security Introduction

More and more attacks are aimed at the entire supply chain, which means that we developers are increasingly targeted by the attackers. Attacks like the SolarWinds hack show us that making sure you don’t use vulnerable dependencies isn’t enough. The attackers have their sights set on the entire development process with its components. But how can I start protecting myself? What practical options do I have in my project without changing everything? In this workshop, we will look at the first steps and try them out in practice which will enable you to integrate the topic of security into your everyday life as a developer.

Who should attend?
This workshop is an introduction to DevOps Supply Chain Security for all levels of developers and systems administrators who would like to get hands-on guidance. Attendees will receive a free cloud version of the JFrog Platform that they can keep after the workshop to continue to grow in their knowledge.

Prerequisites

1. JFrog Free Cloud Account Here: [Select "Cloud" (Not "Self Hosted")] “Click Here” 

This is free, no credit card is required.* It includes access to Artifactory and Xray, with a limited amount of storage and transfer.

2. Docker
The Docker client should be installed and configured on your machine, before the workshop

3. Git + GitHub
A GitHub account is required so that you can fork this repository, and Git must be configured in your terminal so that you can clone it.

4. Code editor
Choose which you are most comfortable using