Welcome to the GUAC Update, a monthly review of what has happened in the GUAC community and what’s coming up. If you have feedback, please let us know. To include something in next month’s update, leave a comment in the issue.
It’s been a relatively quiet month, but we have a few interesting things brewing. Ria Farrell Schalnat spoke at the Community Meeting about how she used GUAC and ClearlyDefined to improve license compliance. The maintainers continue to discuss plans for a new architecture. And we’re looking forward to evaluating GUAC against the newly-released Open Source Project Security Baseline.
Events
- Ben Cotton will attend DevOpsDays Chicago on March 18.
- KubeCon Europe (1-4 April in London)
- Michael Lieberman is presenting a keynote “Cutting Through The Fog: Clarifying CRA Compliance in Cloud Native” with Eddie Knight
- Jeff Mendoza is presenting a talk “Why Don’t We Have Both? Track Build- and Run-time Information for Security With Kubescape and GUAC” with Ben Hirschberg
- Michael Lieberman is presenting a talk “Bridging Supply Chain Policy with Git-less GitOps and GUAC” with Andrew Martin.
- Plus you can stop by the Kusari booth S482 for some GUAC stickers.
- Join Kusari and friends for the DevSec on the Rocks party.
Coming up
Be sure to join us in the weekly Maintainer Meetings, monthly Community Meeting, or on Slack and office hours to participate in the conversation.