Lunch & learn: "Deploying to Production with Confidence!" (with Andres Almiray)

Let's discuss Software Supply Chain security with JReleaser, SLSA, and SBOM. According to EU Law, SBOMs are no longer optional and we all need to be aware of these topics.

After all, how many times have we asked ourselves if it is a good idea to release to production on a Friday afternoon? And whether our production software is sufficiently robust and/or resilient to vulnerabilities? Also, how can we detect and correct security problems in production? Better yet, how can we prevent such problems or attacks, in the first place?

In recent years, the topic Software Supply Chain Security has taken on greater importance. Concepts like SBOMs, SLSA, Reproducible Builds, and CI/CD Security are widely being examined to answer the previously posited questions.

In this conversation over lunch, we will discuss what these concepts are and how you can apply them to your own projects.

Limited seats available (super exclusive to 40, maximum).

About Andres Almiray. Andres is a Java/Groovy developer and a Java Champion Alumni, Developer Advocate for the Database Group At Oracle, with more than 2 decades of experience in software design and development.

He has been involved in web and desktop application development since the early days of Java. Andres is a true believer in open source and has participated on popular projects like Groovy, Griffon, and DbUnit, as well as starting his own projects. Founding member of the Griffon framework and Hackergarten community event. Author of JReleaser.

You can find him on twitter too as @aalmiray. He likes to spend time with his beloved wife, Ixchel, when not hacking around.