In this lab you will learn about the VIPERR framework and how to implement it within your organization to secure your software supply chain.
Working installation of AnchoreCTL and Deployment of Anchore Enterprise is required to complete this lab.
You can get a working environment by following the Deployment lab.
This lab consists of five modules designed to teach you in detail about each component of the VIPERR framework:
- Visibility: Building an accurate Software Bill of Materials (SBOM) from source
- Inspection: Security checks inspecting for vulnerabilities, secrets, permissions, and malware
- Policy Enforcement: Enforce compliance with external and/or internal standards
- Remediation: Recommendations and automation to resolve issues more quickly. Give the developer what they need to move fast.
- Reporting: Report out timely information quickly at any step of the development process.