This new book from Michael Liberman and Brandon Lum guides you from the basics of supply chain security through to being a security expert.
April 1, 2025
Today, we’re excited to announce the release of a project over a year in the making. Our new book, Securing the Software Supply Chain, is available! Thanks to sponsorship from Kusari, you can download a PDF copy for free.
We’ve talked to so many people who know they have to secure their software supply chain, but they don’t know where to start. We wrote this book to help. Through 11 chapters, we take you from the basics of a software supply chain through advanced insights. To keep the content grounded in reality, we imagine the reader works at a financial institution called Secure Bank that’s developing a modern online banking application.
Throughout the book, we include summaries of the key concepts and exercises to help the reader apply the information to their own environment. We also discuss various open source tools for each step in securing the software supply chain, with many examples of real-world usage.
Generative AI is an important part of the current technology landscape, but securing the AI supply chain is even less understood than the general software supply chain. Don’t worry; AI is ultimately software. We take the time to talk about where AI supply chain security differs from general software supply chain security — and where it’s the same.
Although it’s our names on the covers, this book wouldn’t be possible without the support and input of many friends and colleagues. We thank all of you for your feedback that helped make Securing the Software Supply Chain a valuable contribution to the body of knowledge.
Get your free download today! If you’re in London for KubeCon, come see Michael and get a printed three-chapter excerpt at the DevSecOps on the Rocks party Tuesday night or at the Kusari booth (S482) during the expo floor hours.
No older posts
No newer posts