Skip to content

Google Launches GUAC Open Source Project to Secure Software Supply Chain

Google on Thursday announced that it’s seeking contributors to a new open source initiative called Graph for Understanding Artifact Composition, also known as GUAC, as part of its ongoing efforts to beef up the software supply chain.
“GUAC addresses a need created by the burgeoning efforts across the ecosystem to generate software build, security, and dependency metadata,” Brandon Lum, Mihai

Source:: The Hackers News