Upgrade to PRO for Only $50/Year—Limited-Time Offer! 🔥
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Securing your software supply chain
Search
Nicolas Byl
April 17, 2020
Technology
0
370
Securing your software supply chain
Nicolas Byl
April 17, 2020
Tweet
Share
More Decks by Nicolas Byl
See All by Nicolas Byl
Platform Engineering ❤️ Developer Experience
nbyl
0
19
Die Flucht aus der Prototypen-Hölle
nbyl
0
44
Lean Prototyping for Industrial-IoT Projects
nbyl
0
55
DevSecOps - Vom Unikum zur gut geölten Maschine
nbyl
0
110
Keeping-Up-WithUpstream.pdf
nbyl
0
170
Dr. Kube und der Helm - Anatomie einer CD-Pipeline
nbyl
0
130
Securing the "other" supply chain
nbyl
0
290
Kubernetes - Auf die Cluster, Fertig, Los!
nbyl
0
190
Helm - Kubernetes Deployments richtig gemacht
nbyl
0
130
Other Decks in Technology
See All in Technology
ペアーズにおけるAIエージェント 基盤とText to SQLツールの紹介
hisamouna
2
1.6k
SREが取り組むデプロイ高速化 ─ Docker Buildを最適化した話
capytan
0
140
なぜ あなたはそんなに re:Invent に行くのか?
miu_crescent
PRO
0
200
TED_modeki_共創ラボ_20251203.pdf
iotcomjpadmin
0
150
フルカイテン株式会社 エンジニア向け採用資料
fullkaiten
0
9.9k
Kiro を用いたペアプロのススメ
taikis
4
1.7k
AWSインフルエンサーへの道 / load of AWS Influencer
whisaiyo
0
210
AgentCoreとStrandsで社内d払いナレッジボットを作った話
motojimayu
1
880
ハッカソンから社内プロダクトへ AIエージェント「ko☆shi」開発で学んだ4つの重要要素
sonoda_mj
6
1.6k
AWS re:Invent 2025~初参加の成果と学び~
kubomasataka
0
180
MariaDB Connector/C のcaching_sha2_passwordプラグインの仕様について
boro1234
0
1k
20251222_サンフランシスコサバイバル術
ponponmikankan
2
140
Featured
See All Featured
Ten Tips & Tricks for a 🌱 transition
stuffmc
0
34
Information Architects: The Missing Link in Design Systems
soysaucechin
0
710
Mobile First: as difficult as doing things right
swwweet
225
10k
Keith and Marios Guide to Fast Websites
keithpitt
413
23k
Writing Fast Ruby
sferik
630
62k
Primal Persuasion: How to Engage the Brain for Learning That Lasts
tmiket
0
190
SEO in 2025: How to Prepare for the Future of Search
ipullrank
3
3.3k
sira's awesome portfolio website redesign presentation
elsirapls
0
89
Automating Front-end Workflow
addyosmani
1371
200k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
194
17k
How STYLIGHT went responsive
nonsquared
100
6k
The SEO identity crisis: Don't let AI make you average
varn
0
36
Transcript
Securing your software supply chain Anatomie einer DevSecOps Pipeline 1
Storytime 2
3 The way of the Code
The castle illusion 4
5 The way of the Code
6 The way of the Code
Code reviews 7
Signing git commits 8
9 The way of the Code
The dependency iceberg 10
Automation is king 11 • FindBugs • SonarQube • SAST/DAST
• Maven, NPM, ... • Container Images • Operating System • npm audit • Dependabot • Renovate Source Code Analysis Dependency Analysis Update Automation
12 The way of the Code
13 The key to the kingdom
14 Current situation deploy
15 Zero-Trust Deployment IAM deploy poll
16 Policy trumps checks IAM deploy poll
codecentric AG Kreuznacher Straße 30 60486 Frankfurt am Main Telefon:
+49 (0) 173.731 02 40 Nicolas Byl Senior Cloud Consultant
[email protected]
www.codecentric.de Innovative - Trustful - Competent - Pragmatic 17
nbyl
hisamouna
capytan
miu_crescent
iotcomjpadmin
fullkaiten
taikis
whisaiyo
motojimayu
sonoda_mj
kubomasataka
boro1234
ponponmikankan
stuffmc
soysaucechin
swwweet
keithpitt
sferik
tmiket
ipullrank
elsirapls
addyosmani
afnizarnur
nonsquared
varn
