Software Supply Chain and Data Infrastructure Security - 5 lessons from AllDayDevOps 2022

This page summarizes the projects mentioned and recommended in the original post on dev.to
scorecard security-scorecards

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

  • scorecard

    OpenSSF Scorecard - Security health metrics for Open Source

    • Mitigation, according to Sean, is a combination of appropriate (network) access control, SCA (Software Composition Analysis) tooling to manage your policies around CVEs, and purging “all the things”. He also thinks MFA (multi-factor authentication) for authors of (critical) packages should be required. Sean gets his vulnerability insights from deps.dev, ossindex.sonatype, and cvedetails.com, and closely monitors interesting initiatives such as the OpenSSF Security Scorecards - a tool to assess open source projects for security risks through a series of automated checks.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Securizing your GitHub org

    5 projects | dev.to | 19 Feb 2023

  • OpenSSF Scorecard – Build better security habits, one test at a time

    1 project | news.ycombinator.com | 27 Jan 2023

  • You should use the OpenSSF Scorecard

    3 projects | dev.to | 23 Jan 2023

  • Boost Your Enterprise Security with GitHub Actions and the OSSF Score Card

    1 project | dev.to | 30 Dec 2022

  • How does your company manage open-source dependencies?

    2 projects | news.ycombinator.com | 25 Oct 2022