DiscoverThe Kubelist PodcastEp. #48, Unpacking Software Supply Chain Security with Justin Cappos
Ep. #48, Unpacking Software Supply Chain Security with Justin Cappos

Ep. #48, Unpacking Software Supply Chain Security with Justin Cappos

Update: 2025-12-23
Share

Description

On episode 48 of The Kubelist Podcast, Marc Campbell and Benjie De Groot sit down with Justin Cappos, professor at NYU and a pioneer in software supply chain security. They explore the origins of modern package manager security, the real-world limits of SBOMs, and why systems should be designed assuming compromise. The conversation spans CNCF governance, in-toto, TUF, Git security, and the emerging role of AI in securing software.

The post appeared first on Heavybit.

Comments 
loading
In Channel
Ep. #48, Unpacking Software Supply Chain Security with Justin Cappos

Ep. #48, Unpacking Software Supply Chain Security with Justin Cappos

2025-12-2301:04:59

Ep. #47, SecureBuild with Grant Miller of Replicated

Ep. #47, SecureBuild with Grant Miller of Replicated

2025-06-2001:17:46

Ep. #46, Kubefirst with John Dietz of Konstruct

Ep. #46, Kubefirst with John Dietz of Konstruct

2025-03-0553:42

Ep. #45, Live from KubeCon 2024

Ep. #45, Live from KubeCon 2024

2025-01-1450:37

Ep. #44, Service Mesh Evolution with Idit Levine of Solo

Ep. #44, Service Mesh Evolution with Idit Levine of Solo

2024-11-2701:05:03

Ep. #43, SpinKube with Kate Goldenring of Fermyon

Ep. #43, SpinKube with Kate Goldenring of Fermyon

2024-09-2545:49

Ep. #42, Zarf with Wayne Starr of Defense Unicorns

Ep. #42, Zarf with Wayne Starr of Defense Unicorns

2024-07-3143:06

Ep. #41, vCluster with Lukas Gentele of Loft Labs

Ep. #41, vCluster with Lukas Gentele of Loft Labs

2024-04-2401:06:01

Ep. #40, The Open Source Secret Agent with Dave McAllister of NGINX

Ep. #40, The Open Source Secret Agent with Dave McAllister of NGINX

2024-01-1701:17:27

Ep. #39, Live From KubeCon 2023

Ep. #39, Live From KubeCon 2023

2023-12-1301:04:00

Ep. #38, Exploring K0s with Jussi Nummelin of Mirantis

Ep. #38, Exploring K0s with Jussi Nummelin of Mirantis

2023-11-1555:14

Ep. #37, Dagger with Solomon Hykes

Ep. #37, Dagger with Solomon Hykes

2023-06-2835:16

Ep. #36, The Docker Story with Solomon Hykes

Ep. #36, The Docker Story with Solomon Hykes

2023-06-0752:23

Ep. #35, The Open Source Journey with Tom Preston-Werner

Ep. #35, The Open Source Journey with Tom Preston-Werner

2023-02-0801:16:15

Ep. #34, Slim.AI with Kyle Quest and John Amaral

Ep. #34, Slim.AI with Kyle Quest and John Amaral

2022-12-1457:49

Ep. #33, Tailscale with Avery Pennarun

Ep. #33, Tailscale with Avery Pennarun

2022-10-1901:03:31

Ep. #32, LocalStack with Waldemar Hummer

Ep. #32, LocalStack with Waldemar Hummer

2022-09-1258:55

Ep. #31, Kustomize with Katrina Verey of Shopify

Ep. #31, Kustomize with Katrina Verey of Shopify

2022-08-1701:00:50

Ep. #30, Cilium and eBPF with Thomas Graf of Isovalent

Ep. #30, Cilium and eBPF with Thomas Graf of Isovalent

2022-08-1001:07:26

Ep. #29, CloudQuery with Yevgeny Pats

Ep. #29, CloudQuery with Yevgeny Pats

2022-07-1301:00:00

loading
Google Play
Download from Google Play
Castbox
Download from App Store
usUnited States
00:00
00:00
1.0x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

Ep. #48, Unpacking Software Supply Chain Security with Justin Cappos

Ep. #48, Unpacking Software Supply Chain Security with Justin Cappos

Heavybit