Your software supply chain includes all the code, individuals, procedures, and organisational structures used to create and deliver software internally and externally
The software supply chain is complex, therefore there are many methods to make illegal changes to your customers' software
Lack of production deployment or code review security requirements allows hazardous code to enter the supply chain
Government regulations that are particular to supply chain security have been created as a result of growing concerns about supply chain security
Google’s software security procedures served as the model for the open-source framework Supply Chain Levels for Software Artefacts
GKE Security posture dashboard, Google cloud are introducing a new “Supply Chain” card to increase transparency and control over your software supply chain
GKE Security Posture addresses supply chain problems as part of Google Cloud's ongoing commitment to increase workload security