Skip to content
/ supply-chain-security-java Public

Samples showing how to secure the supply chain for Java applications.

License

Apache-2.0 license
8 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ThomasVitale/supply-chain-security-java

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

34 Commits

.devcontainer

.devcontainer

 
 

.github

.github

 
 

buildpacks/gradle

buildpacks/gradle

 
 

dependency-management

dependency-management

 
 

dependency-track

dependency-track

 
 

policies/gradle

policies/gradle

 
 

sbom

sbom

 
 

.gitignore

.gitignore

 
 

.sdkmanrc

.sdkmanrc

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

Supply Chain Security Java

Samples showing how to secure the supply chain for Java applications, including:

  • SBOMs with CycloneDX and SPDX
  • Dependency Management with Gradle and Maven
  • Cryptographic signatures, policies, and SLSA
  • Containerization with Cloud Native Builpacks

Articles

Conference Presentations

Devoxx UK 2024

Watch the video

Voxxed Days Zurich 2024

Watch the video

Devoxx Belgium 2023

Watch the video

About

Samples showing how to secure the supply chain for Java applications.

Topics

java sbom cyclonedx slsa supply-chain-security sigstore

Resources

Readme

License

Apache-2.0 license
Activity

Stars

8 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages 1

 

Languages