⛓ in-toto and SLSA•🐙Wolfi OS Package Updates•🐳 Docker Builds and Multi-platform• ❌🔑 Keyless Signing for GitLab•💃SLSA v1.0 Release•🚨CNCF SLSA Assessments

⛓ A new blog post was published about in-toto and SLSA to give a better understanding of how these two are related to each other! If you are interested in learning more about software supply chain security, most probably most of you have come across the terms in-toto attestations and SLSA provenance. But have you ever ask the question to yourself how these two are related to each other, let’s find out! Thanks to