This is the landing page for the OpenSSF SLSA Workshop hosted at the 2024 Open Source Security Summit North America on April 15.
If you like the workshop and tutorials, let us know with a star!
If you encounter problems or there are features you would like to see, create an issue.
Virtually none. If you have not coded in a while, you can still follow the workshop. All hands-on activities have code that is ready to be run. All you'll need to do is clone repositories, update configurations and click GitHub buttons or run commands in a terminal to follow along.
Slides for the workshop.
Install the necessary software.
The schedule and presentations are available in the slides.
- Presentation: Introduction to SLSA Page 4
- Activity 01: Generate and verify SLSA provenance
- Presentation: Publish and deployment policies Page 12
- Activity 02: Publish policy
- Activity 03: Deployment policy
- Activity 04: Kyverno setup
- Presentation: SLSA for AI Page 29
- Activity 05: Model integrity protection