Supply-Chain Security - Definição do Glossário de CI/CD
A supply-chain security é a disciplina de proteger todo o caminho do código-fonte até as dependências, o build e o release contra adulteração, usando assinatura, provenance e pinning para garantir integridade.
Guias relacionados
SLSA - CI/CD Glossary DefinitionSLSA is a security framework defining graded levels of build and release integrity, from basic provenance up…
Signed Commits - CI/CD Glossary DefinitionSigned commits attach a cryptographic signature to each commit so its author can be verified, proving history…
Build Provenance - CI/CD Glossary DefinitionBuild provenance is the verifiable record a CI system emits of how an artifact was produced - which commit, w…