SLSA 4

GPTKB entity

Statements (16)
Predicate Object
gptkbp:instanceOf gptkb:Software_Supply_Chain_Security_Level
gptkbp:appliesTo Software artifacts
gptkbp:definedIn gptkb:OpenSSF
gptkbp:describes The highest level of the SLSA framework, providing the strongest supply chain security guarantees.
gptkbp:features Highest
https://www.w3.org/2000/01/rdf-schema#label SLSA 4
gptkbp:introducedIn 2021
gptkbp:partOf gptkb:SLSA_Framework
gptkbp:requires Reproducible builds
Hermetic builds
Two-person review of all changes
Builds run on dedicated infrastructure
Provenance generated at build time
gptkbp:usedFor Securing software supply chains
gptkbp:bfsParent gptkb:Supply-chain_Levels_for_Software_Artifacts
gptkbp:bfsLayer 7