John Kjell

Presenters John Kjell Source OpenSource SecurityCon NA 2025 Building Trust: Beyond Basic Provenance in Your Software Supply Chain 🚀 In today’s interconnected world, the security of our software supply chain is paramount. We rely on a complex web of dependencies, tools, and build processes, and a single weak link can have devastating consequences. This is why understanding and strengthening build provenance verification is no longer a nice-to-have, but an absolute necessity. We recently had the privilege of diving deep into this critical area with John Shell, a seasoned consultant at Control Plane and an active open-source maintainer, as he shed light on the nuances of the Supply-chain Levels for Software Artifacts (Salsa) framework and, more importantly, how to go beyond its standard attestations. ...

Presenters John Kjell Marina Moore Source OpenSource SecurityCon NA 2025 Open Source Security Con: A Day of Learning, Collaboration, and Celebration! 🥳 What an incredible day we’ve had at Open Source Security Con! From deep dives into complex security challenges to fostering a more secure open-source ecosystem, it’s been a whirlwind of knowledge, innovation, and community spirit. As the day winds down, let’s take a moment to reflect on what made this event so special and what lies ahead. ...