Supply Chain

https://github.com/cncf/tag-security/tree/main/supply-chain-security/compromises

https://ntia.gov/files/ntia/publications/vex_one-page_summary.pdf

https://dlorenc.medium.com/zero-trust-supply-chain-security-e3fb8b6973b8

TODO: go through previous Ryan Nairaine newsletter (before Oct 6, 2021), one of them 2 or 3 ago had a ton of great links.