Assured Open Source Software (OSS) provides access to a curated collection of open source software packages which are vetted by Google. This capability focuses on software development to protect code from vulnerabilities, helping to reduce the risk to the software supply chain.
| Capability ID | Capability Description | Category | Value | ATT&CK ID | ATT&CK Name | Notes |
|---|---|---|---|---|---|---|
| assured_oss | Assured Open Source Software | protect | partial | T1195 | Supply Chain Compromise |
Comments
Assured OSS provides Google OSS packages built with security features to help improve the security of a software supply chain, including vulnerability testing, signed provenance, and secured distribution.
References
|
| assured_oss | Assured Open Source Software | protect | partial | T1195.001 | Compromise Software Dependencies and Development Tools |
Comments
Assured OSS provides Google OSS packages built with security features to help improve the security of a software supply chain, including vulnerability testing, signed provenance, and secured distribution.
References
|
| assured_oss | Assured Open Source Software | protect | partial | T1195.002 | Compromise Software Supply Chain |
Comments
Assured OSS provides Google OSS packages built with security features to help improve the security of a software supply chain, including vulnerability testing, signed provenance, and secured distribution.
References
|