Premium

The Linux Foundation Announces Software Signing Service In Partnership With Red Hat, Google, And Purdue University

The Linux Foundation, in partnership with Red Hat, Google, and Purdue University, has announced a new digital signing project, potentially eliminating many of the issues that come with securing open-source software, files, images, and binaries. The new open-source software signing service called “sigstore” comes in the wake of the SolarWinds supply chain attack that’s been dubbed “IT’s Pearl Harbor.”...