Welcome to the GUAC Update, a monthly review of what has happened in the GUAC community and what’s coming up. If you have feedback, please let us know. To include something in next month’s update, leave a comment in the issue.
Releases
We had a handful of GUAC releases in January. The highlight is
Events
Several members of the GUAC community spoke at FOSDEM in Brussels:
- Brandon Lum and Marco Deicas presented A retrospective on Google’s SBOM implementation
- Jeff Mendoza and Qing Tomlinson presented Discover Dependency License Information Using SBOMs and ClearlyDefined
- Michael Lieberman presented The Breadth and Depth of SBOMs
And we have some events coming up as well:
- Ben Cotton will attend DevOpsDays Chicago on March 18.
- KubeCon Europe (1-4 April in London)
- Michael Lieberman is presenting a keynote “Cutting Through The Fog: Clarifying CRA Compliance in Cloud Native” with Eddie Knight
- Jeff Mendoza is presenting a talk “Why Don’t We Have Both? Track Build- and Run-time Information for Security With Kubescape and GUAC” with Ben Hirschberg
- Michael Lieberman is presenting a talk “Bridging Supply Chain Policy with Git-less GitOps and GUAC” with Andrew Martin.
- Plus you can stop by the Kusari booth S482 for some GUAC stickers.
Coming up
Be sure to join us in the weekly Maintainer Meetings, monthly Community Meeting, or on Slack and office hours to participate in the conversation.