Google Cloud Introduces New Secured Open Source Software Service

JAKARTA - Group Product Manager, Security & Privacy Andy Chang announced that Google Cloud is launching the Guaranteed Open Source Software service, on Tuesday, 17 May.

The release of its new open source security code is part of Google's promise last summer to improve cybersecurity on the Internet.

Chang also said that open source software has become a top target for cybercriminals, with a 650 percent year-on-year spike worldwide.

"To enhance our commitment to helping organizations strengthen their OSS software supply chains, today we are announcing a new Google Cloud product: the Guaranteed Open Source Software service," said Chang, in a Google blog.

Assured OSS enables enterprise and public sector open source software users to easily incorporate the same OSS packages that Google uses into their own developer workflows.

As for the packages curated by the Assured OSS service:

Regularly scanned, analyzed and tested for vulnerabilities Has associated enriched metadata incorporating container/artifact analysis data Built with cloud build including verifiable slsa compliance proof Completely signed by google Distributed from an artifact registry secured and protected by google

As a result, Chang adds, Assured OSS allows organizations to benefit from Google's extensive security.

"Organizations can also reduce their need to develop, maintain, and operate complex processes to secure their open source dependencies. Assured OSS is expected to enter Preview in Q3 2022."

Tag: google cloud google