Kusari, a leading software supply chain security startup, is making a significant impact at KubeCon + CloudNativeCon Europe 2025 in London, with the announcement of their new book, Securing the Software Supply Chain, and active participation in multiple speaking engagements. The event, held from April 1-4, 2025, will showcase Kusari’s latest platform innovations and open-source contributions. The Kusari team will also host DevSecOnTheRocks, an exclusive networking event designed for the cloud native security community.
New Book by DevSecOps Experts
Kusari’s new book, Securing the Software Supply Chain, authored by Michael Lieberman of Kusari and Brandon Lum of Google, offers a comprehensive guide to securing the modern software development lifecycle. This book aims to help organizations safeguard their software supply chains, addressing everything from upstream open-source libraries to developer workstations. It emphasizes practical strategies for securing each phase, with insights into policies, automation, and continuous monitoring.
The book is available as a free eBook download on Kusari’s website, making this valuable resource accessible to all developers and security teams seeking to improve their software supply chain security practices.
Kusari’s Commitment to Open Source
Kusari is also at the forefront of several open-source initiatives aimed at securing software supply chains. At KubeCon EU, Kusari’s technical experts will highlight next-generation solutions such as GUAC (Graph for Understanding Artifact Composition) and OpenSSF’s Open Source Project Security Baseline. Kusari is actively involved in these projects as maintainers and contributors, reinforcing their dedication to enhancing software security standards.
In light of rising threats from supply chain attacks and new compliance regulations like the EU’s Cyber Resilience Act (CRA), Kusari is helping organizations achieve greater transparency and security throughout the software development lifecycle.
Michael Lieberman, Kusari’s CTO & Co-Founder, shared, “As supply chain attacks continue to increase, Kusari is committed to providing solutions that offer unprecedented security across the development lifecycle. KubeCon EU is the perfect platform to connect with the community and share our expertise.”
Kusari Speaker Presentations at KubeCon EU
Kusari experts will be presenting at several sessions throughout KubeCon + CloudNativeCon Europe 2025:
- “Mind the Gap: Bridging Supply Chain Policy with Git-less GitOps and GUAC”
Date/Time: Thursday, April 3 at 2:15 PM
Speakers: Michael Lieberman (Kusari) and Andrew Martin (ControlPlane) - KEYNOTE: “Cutting Through the Fog: Clarifying CRA Compliance in Cloud Native”
Date/Time: Friday, April 4 at 9:40 AM
Speakers: Michael Lieberman (Kusari) and Eddie Knight (Sonatype) - “Why Don’t We Have Both? Track Build- and Run-time Information for Security with Kubescape and GUAC”
Date/Time: Friday, April 4 at 3:15 PM
Speakers: Jeff Mendoza (Kusari) and Ben Hirschberg (ARMO)
DevSecOnTheRocks Community Party
Date/Time: Tuesday, April 1 at 6:00 PM
Location: Good Hotel – Royal Victoria Dock
Co-hosts: Kusari, ControlPlane, Cloudsmith, and Spacelift
This exclusive event is designed to bring together cloud native security professionals for an evening of food, drinks, and networking. RSVP required.
Kusari’s participation in KubeCon + CloudNativeCon Europe 2025 highlights their ongoing commitment to improving software supply chain security. With the launch of Securing the Software Supply Chain, Kusari provides critical insights and practical strategies for securing modern development workflows. Their open-source contributions, expert-led presentations, and networking opportunities further demonstrate Kusari’s leadership in the cloud native security space.
