The following are some typical cases to explore how SLSA compliance can provide protection. In each, we’ve detailed goals that users need to meet, how organizations can use the SLSA framework to help meet them, and limitations that might be faced.
For a full example that explores edge cases in greater detail, we created a use case for using curl through its official docker image.
Want to contribute? These are only a few of the most common use cases for developers, software consumers and repository maintainers. We welcome any real life scenarios you’ve faced using SLSA in your projects.