 |
International Journal for Research Trends and Innovation
International Peer Reviewed & Refereed Journals, Open Access Journal
ISSN Approved Journal No: 2456-3315 | Impact factor: 8.14 | ESTD Year: 2016
Scholarly open access journals, Peer-reviewed, and Refereed Journals, Impact factor 8.14 (Calculate by google scholar and Semantic Scholar | AI-Powered Research Tool) , Multidisciplinary, Monthly, Indexing in all major database & Metadata, Citation Generator, Digital Object Identifier(DOI)
|
Issue: March 2026
Volume 11 | Issue 3
Review Result and Publication of Paper within : 2-3 days
Click Here For more DetailsFor Authors
Forms / Download
Published Issue Details
Editorial Board
Other IMP Links
Facts & Figure
Impact Factor : 8.14
Issue per Year : 12
Volume Published : 11
Issue Published : 118
Article Submitted : 21653
Article Published : 8541
Total Authors : 22459
Total Reviewer : 811
Total Countries : 159
Indexing Partner
Licence
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License
|
Published Paper Details
|
|
| Paper Title: | Software Supply Chain Security: Implementing SLSA Compliance in CI/CD Pipelines |
| Authors Name: | Devashish Ghanshyambhai Patel |
| Download E-Certificate: | Download |
| Author Reg. ID: |
IJRTI_205129
|
| Published Paper Id: | IJRTI2507011 |
| Published In: | Volume 10 Issue 7, July-2025 |
| DOI: | https://doi.org/10.56975/ijrti.v10i7.205129 |
| Abstract: | Modern software development increasingly relies on Continuous Integration and Continuous Deployment (CI/CD) pipelines to accelerate innovation. These pipelines automate the integration of code changes, testing, and deployment, enabling developers to release software updates faster and more frequently than ever before. However, the speed of deployment often comes at the cost of exposing vulnerabilities within the software supply chain. Rapid code delivery, frequent use of third-party dependencies, and decentralized development environments introduce multiple attack vectors that can be exploited if not properly secured. The growing sophistication of supply chain attacks—including dependency confusion, artifact tampering, and build process compromises—has highlighted the need for robust, verifiable security controls throughout the development lifecycle. Traditional security approaches often fall short in addressing these modern challenges, particularly in cloud-native environments where microservices, containers, and ephemeral infrastructure dominate. The Supply-chain Levels for Software Artifacts (SLSA) framework offers a structured, incremental approach to securing build processes. By ensuring provenance, tamper resistance, hardened build environments, and reproducible builds, SLSA provides a comprehensive defense-in-depth strategy for CI/CD security. This paper provides an in-depth analysis of integrating SLSA compliance into CI/CD pipelines, discusses the tools and methodologies involved, and presents real-world case studies. It explores how SLSA can be systematically applied in both legacy and cloud-native environments to mitigate risk. By elaborating on both technical and organizational perspectives, this work aims to serve as a comprehensive reference for organizations striving to enhance software security and align with evolving compliance standards. |
| Keywords: | Software Supply Chain Security, SLSA, CI/CD, Provenance, Build Integrity, DevSecOps |
| Cite Article: | "Software Supply Chain Security: Implementing SLSA Compliance in CI/CD Pipelines", International Journal for Research Trends and Innovation (www.ijrti.org), ISSN:2455-2631, Vol.10, Issue 7, page no.a84-a94, July-2025, Available :http://www.ijrti.org/papers/IJRTI2507011.pdf |
| Downloads: | 000590 |
| ISSN: |
2456-3315 | IMPACT FACTOR: 8.14 Calculated By Google Scholar| ESTD YEAR: 2016 An International Scholarly Open Access Journal, Peer-Reviewed, Refereed Journal Impact Factor 8.14 Calculate by Google Scholar and Semantic Scholar | AI-Powered Research Tool, Multidisciplinary, Monthly, Multilanguage Journal Indexing in All Major Database & Metadata, Citation Generator |
| Publication Details: |
Published Paper ID: IJRTI2507011
Registration ID:205129
Published In: Volume 10 Issue 7, July-2025
DOI (Digital Object Identifier): https://doi.org/10.56975/ijrti.v10i7.205129
Page No: a84-a94 Country: Hayward, California, United States Research Area: Engineering Publisher : IJ Publication Published Paper URL : https://www.ijrti.org/viewpaperforall?paper=IJRTI2507011 Published Paper PDF: https://www.ijrti.org/papers/IJRTI2507011 |
| Share Article: | |
|
Click Here to Download This Article |
|
| Article Preview | |
|
|
|
Major Indexing from www.ijrti.org
| Google Scholar | ResearcherID Thomson Reuters | Mendeley : reference manager | Academia.edu |
| arXiv.org : cornell university library | Research Gate | CiteSeerX | DOAJ : Directory of Open Access Journals |
| DRJI | Index Copernicus International | Scribd | DocStoc |
ISSN Details
 |
 |
|
ISSN: 2456-3315
Impact Factor: 8.14 and ISSN APPROVED,
Journal Starting Year (ESTD) : 2016
DOI (A digital object identifier)
| Providing A digital object identifier by DOI.ONE How to Get DOI? |
Conference
Open Access License Policy
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License
Important Details
Join RMS/Earn 300
WhatsApp
Click Here
Click Here
Indexing Partner |
|||
| Copyright © 2026 - All Rights Reserved - IJRTI | |||