Securing OSS Supply Chain using SLSA

The present issue is using Open Sorce software in project development.

The risk associated with using unverified Open source software in the project.

The Way to protect an Open source supply chain in project delivery using SLSA framework as part of the DevSecOps process.