Google Cloud has made its Assured Open Source Software (OSS) service for Java and Python ecosystems available to all organizations at no cost. This comes as a response to the increasing threats hidden in open source software.
The code packages available as part of Google’s Assured OSS program are regularly scanned, analyzed, and fuzz-tested for vulnerabilities; have corresponding enriched metadata incorporating container/artifact analysis data; are built with Cloud Build, including evidence of verifiable SLSA-compliance; are verifiably signed by Google; and are distributed from an Artifact Registry secured and protected by Google.
Give a Pawfive to this post!
Share with your friends and followers
Start writing about what excites you in tech — connect with developers, grow your voice, and get rewarded.
Join other developers and claim your FAUN.dev() account now!
