🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Deal of the Day September 12: New MEAP! Save 45% on my book Securing the Software Supply Chain and other selected titles Manning Publications #SupplyChainSecurity #SBOM #AppSec: mng.bz/WrEx

🥑+🤖🧠=🔐 We got a super exciting GUAC community meeting coming up this week... which may or may not feature some LLMs!! Come join us and see some cool demos from Ridwan Hoq Sertaç Özercan and more! Meeting invite details at guac.sh/community

For those that didn't catch the LLM's response to "where's the vulns?", catch the recording up now! youtube.com/watch?v=gKpt0i…

Increase your mental health on CVE drop days (I.e. recent curl vuln) by being prepared! Go in knowing your blast radius and prepared to patch and mitigate! In this blogpost Parth Patel , Mihai Maruseac and I use GUAC to do this for last week’s CURL CVE. kusari.dev/blog/terror-of…

Excited to see GUAC landing as an OpenSSF incubating project, with the set of initial contributors - Citi kusaridev Santiago(Purdue) Google and quotes from some early adopters - Red Hat Yahoo ClearAlpha Guidewire Software github.com/ossf/tac/blob/…

📣Deal of the Day📣 Nov 18 Securing the Software Supply Chain & selected titles are 45% OFF: mng.bz/WrEx Michael Lieberman Brandon Lum Secure your entire #softwaresupplychain, including the code you write, the libraries you use, and the platforms you run on. #SBOM #AppSec

I’m out in Tokyo for talks at OpenSSF day and The Linux Foundation open source summit Japan. For folks who want to chat cybersecurity and GUAC hit me up.

Software Supply Chain Security with Michael Lieberman Michael Lieberman is the Co-Founder and CTO of Kusari and has an extensive background in software security. Michael joins the show today to talk about challenges and strategies in software supply chain security.

Congratulations to Tim Miller, Michael Lieberman, Parth Patel & the @Kusari team on your seed round! It's been a privilege to work with you since the earliest days of your journey to tackle one of the biggest challenges in security today. unusual.vc/post/kusari-se…

📣Deal of the Day📣 Feb 8 SAVE 45% on Securing the Software Supply Chain & selected titles: mng.bz/WrEx Michael Lieberman Brandon Lum #SupplyChainSecurity Secure your entire #softwaresupplychain, including the code you write, libraries you use & the platforms you run on.

GUAC has joined the OpenSSF as an Incubating Project 🎉 GUAC is an open source supply chain security project that provides dependency management and actionable insights into the security of software supply chains. Read the announcement: openssf.org/blog/2024/03/0… #OSSSecurity

🎉🥑🍅🧅I'm really excited as GUAC joins the OpenSSF community, allowing the project to continue to grow, and join forces with other partners and members in the OpenSSF in developing an open source knowledge graph! Looking forward to this next step in our journey!

We are happy to publish a whitepaper on how we're thinking on securing the AI supply chain both internally and for OSS. This is a culmination of nearly a year of thinking about this space, from people working on AI or security, across multiple Google PAs. research.google/pubs/securing-…

Awesome piece on supply chain security! Shout out to sigstore and GUAC!!!

Mark your calendars! Join us for our first ever GUAC OpenSSF tech talk on June 6th! openssf.org/blog/2024/05/1…

I know everyone wants to work on the cool thing or save/make a ton of money by throwing AI at a problem but it's extraordinarily dangerous. How many folks are verifying that the provenance and that the code/training data isn't malicious or vulnerable?

Hi All! I’ll be talking about SBOMs and how Google produces and uses them for EO 14028 and beyond at this webinar tomorrow! Hope to see you there!

.PRODAFT Winston & Strawn LLP & J2 Ventures join Jill Malandrino on Nasdaq #TradeTalks to discuss comprehensive solutions for cyber teams to play offense and defensive and how privacy and security regulation is advancing. #CybersecurityAwarenessMonth x.com/i/broadcasts/1…

GUAC, SLSA and Sigstore mentioned several times at first keynote of #sossfusion (and other similar high quality projects)

It's so awesome hearing about the multiple shoutouts to 🥑GUAC during the Kubecon_ keynotes!!! Really wished I could be there in person! Appreciate the call outs and looking forward to engaging with new community members! See you in slack! guac.sh/community/