Supply chain attacks on OSS grew by 650% in 2021. As these attacks have risen, the types and sophistication of attacks have also transformed. Previously, attackers focused on targeting dependencies, now they have expanded their focus to include targeting user accounts and build processes. This session will help you navigate this complex environment and explore how to think about securing your end-to-end supply chain: personal account, code, and build processes. To improve your organization's confidence that the code you rely on hasn't been tampered with.