Article GitHub: How code provenance can prevent supply chain attacks Through artifact attestation and the SLSA framework, GitHub's Jennifer Schelkopf argues that at least some supply chain attacks can be stopped in their tracks. Read Now