Developers who are serious about securing their code have cause to rejoice. The Open Source Security Foundation (OpenSSF) is releasing Supply-chain Levels for Software Artifacts (SLSA, pronounced Salsa) version 1.0.
Read full article on The New Stack