TEL AVIV, Israel, Feb. 15, 2023 /PRNewswire/ — Scribe Security, a software supply chain security solution provider, announced today the release of a new capability within its SaaS Trust Hub designed to help organizations better understand and comply with the NIST SP 800-218 (SSDF) and SLSA frameworks—two emerging standards for software supply chain. Scribe users (currently on GitHub and soon on additional SCMs) can now, not only apply a policy over attestations to ensure secure development and build processes or validate that tampering hasn’t taken place, but also gauge compliance with the SSDF—the basis for the new U.S. cyber regulation and the SLSA framework, developed by Google and adopted by the OpenSSF.
