[BLOG POST] Supply chain attacks #25
Description
Blog on stuff like:
From Go world but can reference Rust or python supply chain hardening and OSSF
https://cacm.acm.org/practice/fifty-years-of-open-source-software-supply-chain-security/
https://reproducible-builds.org/
https://go.googlesource.com/proposal/+/master/design/25530-sumdb.md