Read the abstract ➤ https://www.conf42.com/Python_2024_Marco_Verleun_prove_safety_software Other sessions at this event ➤ https://www.conf42.com/python2024 Join Discord ➤ https://discord.gg/DnyHgrC7jC Support our mission ➤ https://www.conf42.com/support Chapters 0:00 intro 0:20 preamble 0:47 short agenda 1:57 for future use... 2:09 from code to production 2:52 a (random) app step by step: worker.py 3:36 how is this done in the food industry? 3:50 food safety 4:33 it probably depends 5:02 it is nice to know what's inside 5:42 why not do the same with our 6:20 ...boms are there to help 7:18 why use sboms? 7:39 did you see this? 8:05 was your app affected? 8:45 like food labels sboms tell you what's inside 8:50 example sbom snippet 10:21 more and more you can download them upfront 11:39 and analyze them before you install something 12:33 back to our app: worker.py 12:47 step 1: the code 13:10 shipping the app 13:53 building the container images 14:24 build result 15:21 sbom creation 16:13 source code analysis 16:33 our first image based on python:latest 17:29 can we do better: python:3.9.18-slim 18:01 let's try one more image: python:alpine 18:35 summary 18:48 storing sbom files 20:31 distributing sbom files 21:40 final words 22:54 interesting links