Google Cloud has made its Assured Open Source Software (OSS) service for Java and Python ecosystems available to all organizations at no cost. This comes as a response to the increasing threats hidden in open source software.
The code packages available as part of Google’s Assured OSS program are regularly scanned, analyzed, and fuzz-tested for vulnerabilities; have corresponding enriched metadata incorporating container/artifact analysis data; are built with Cloud Build, including evidence of verifiable SLSA-compliance; are verifiably signed by Google; and are distributed from an Artifact Registry secured and protected by Google.
Share with your friends and followers
Start blogging about your favorite technologies, reach more readers and earn rewards!
Join other developers and claim your FAUN account now!
Only registered users can post comments. Please, login or signup.