CNCF announces graduation of in-toto security framework, enhancing software supply chain integrity across industries

Published:

April 23, 2025

From

Cloud Native Computing Foundation

The Cloud Native Computing Foundation has announced the graduation of in-toto, a software supply chain security framework developed by a research team led by Professor Justin Cappos. in-toto ensures each step in the software lifecycle is verified and executed correctly, helping organizations reduce risk and meet security standards. It’s supported by major agencies and adopted by companies like Autodesk and SolarWinds. “in-toto’s graduation validates our lab’s pioneering work in software security,” said Cappos, emphasizing its evolution from academic research to industry standard.

Read The Article

Departments

Degrees & Programs

Resources

Overview

Community

News & Events

CNCF announces graduation of in-toto security framework, enhancing software supply chain integrity across industries

Justin Cappos

More to Read

Meet Patrick Zielinski, Ph.D. Candidate in Computer Science

New Algorithm Dramatically Speeds Up Stroke Detection Scans

NYU Tandon’s Doctoral Program in Biomedical Engineering: Where Breakthroughs Begin