4:["$","$L13",null,{"data":{"root":{"props":{}},"content":[{"type":"PageLayout","props":{"id":"pl-gate","layout":"sidebar","sidebarPosition":"right","sidebarWidth":50,"gap":"none","stickyEnabled":"no","sidebarBg":"no","sidebarBorder":"no","sidebarPadding":"none","paddingY":"small","maxWidth":"contained","verticalAlign":"top","minHeight":"full"}}],"zones":{"pl-gate:main-content":[{"type":"Pill","props":{"id":"pill-gate","text":"

PDF Guide · 14 Pages

","style":"pill","color":"#46d68c","size":"small","align":"left","uppercase":"yes"}},{"type":"TextSection","props":{"id":"ts-headline","body":"

Secure Software
Supply Chain Guide

A practical field guide to protecting your applications, dependencies, and CI/CD pipelines from modern supply chain attacks - from SBOMs to artifact signing.

","layout":"full","textColor":"","backgroundColor":""}},{"type":"Checklist","props":{"id":"cl-gate","items":[{"text":"The 6 most common supply chain risks"},{"text":"How real-world attacks actually work"},{"text":"7 components of a secure program"},{"text":"SBOM and dependency governance"},{"text":"A 25-point best-practices checklist"},{"text":"Mistakes teams make - and how to avoid them"}],"icon":"check","iconColor":"#2eb872","columns":2,"textColor":"#e7e2d6","size":"md","label":"What is inside","labelType":{"font":"JetBrains Mono","size":"11px","weight":"","lineHeight":"","letterSpacing":"0.22em","color":"#8aa39c","transform":"uppercase"}}},{"type":"Stats","props":{"id":"stats-gate","items":[{"number":"14","caption":"Pages"},{"number":"25","caption":"Checklist items"},{"number":"~8 min","caption":"Read time"}],"numberColor":"#f5f2ea","numberFont":"Fraunces","captionColor":"#8aa39c","align":"left","numberType":{"font":"Fraunces","size":"30px","weight":"600","lineHeight":"","letterSpacing":"","color":"","transform":"none"},"captionType":{"font":"JetBrains Mono","size":"11px","weight":"","lineHeight":"","letterSpacing":"0.1em","color":"","transform":"uppercase"}}}],"pl-gate:sidebar":[{"type":"LeadCaptureForm","props":{"campaignId":"85ff1cc4-68c4-4954-b523-8cde8d365e19","design":{"layout":{"arrangement":"form-only","contentWidth":"contained","verticalPadding":"small","backgroundImage":"","backgroundColor":"transparent","overlayColor":"#000000","overlayOpacity":55},"heading":{"text":"","color":"#ffffff","font":"inherit","size":"medium","align":"left","bold":"yes","italic":"no"},"description":{"text":"","color":"#ffffff","font":"inherit","size":"medium","align":"left","bold":"no","italic":"no"}},"form":{"formCard":{"heading":"Get the guide","headingFont":"Fraunces","headingSize":"medium","headingAlign":"left","headingColor":"#11201d","background":"#fbfaf6","shadow":"large","subtext":"Drop your details below and we'll send the PDF straight to your inbox.","backgroundGradient":"#f5f2ea","labelStyle":"mono","cover":{"type":"document","height":"medium","image":"","title":"Secure Software Supply Chain Guide","titleFont":"Fraunces","watermarkTop":"APPLICATION SECURITY","watermarkBottom":"STANDARDS","badge":"PDF","monoFont":"JetBrains Mono","bgFrom":"#1c413a","bgTo":"#0e201d","accent":"#46d68c"}},"formFields":{"fields":[{"label":"First name","type":"text","required":"yes","enabled":"yes","width":"half"},{"label":"Last name","type":"text","required":"yes","enabled":"yes","width":"half"},{"label":"Work email","type":"email","required":"yes","enabled":"yes","width":"full"},{"label":"Company","type":"text","required":"yes","enabled":"yes","width":"full"}]},"button":{"text":"Send me the guide","color":"#2eb872","gradientColor":"#1f8f57","showArrow":"yes","textColor":"#ffffff","radius":"rounded","size":"large"},"terms":{"showCheckbox":"yes","text":"I agree to the Terms of Service and Privacy Policy","url":"https://appsecuritystandards.org/pages/terms-and-conditions","privacyUrl":"https://appsecuritystandards.org/pages/privacy","textColor":"#0a4737","textSize":"small","textFont":"inherit","textBold":"no","textItalic":"no"},"footerText":{"show":"no","text":"No spam. One email with your download link.","leadingIcon":"shield","color":"#74837e","size":"small","font":"inherit","bold":"no","italic":"no","align":"left"}},"behavior":{"showInPortal":"no","coverImageUrl":"https://assets.cply.org/media/2d06f484-eead-4a21-83a2-2b3cbd432a06/pdf-thumbnail/b9198028-6172-4a90-8cbc-794c59ed6336-b3eee5fd-80a2-451b-a2e9-4f3e8d50937e-cover.webp","afterSubmit":{"action":"redirect","thankYouHeading":"Thank You!","thankYouMessage":"Please check your email for your request.","redirectUrl":"https://appsecuritystandards.org/resources/thank-you-lead-submit"},"followUpEmail":{"enabled":"yes","fromAddressId":"42d49605-69bf-49ff-a039-ce658df92e57","subject":"Here is the Secure Software Supply Chain Guide You Requested","bodyHtml":"

Hi {{first_name}},

Here's the resource you requested. You can view and download it here.

Feel free to reply if you have any questions.

Amanda Meyers

","downloadUrl":"https://assets.cply.org/media/2d06f484-eead-4a21-83a2-2b3cbd432a06/pdf/ea5c4723-cea0-484a-8261-5df9fa0f123b-secure-software-supply-chain-guide.pdf","downloadLabel":"Download Now","attachFile":"no","deliveryMethod":"portal","magicLinkExpiryDays":"30"}},"id":"lcf-gate"}}]},"_pageSettings":{"overridePrimaryColor":"","overrideAccentColor":"","overrideBgColor":"","overrideTextColor":"","overrideFontFamily":"","overrideFontHeading":"","overrideFontSize":"16","overrideTextDensity":"normal","hideHeader":false,"hideFooter":false,"backgroundPreset":{"id":"atmospheric-teal","name":"Atmospheric Teal","css":{"background":"url(\"data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' width='120' height='120'%3E%3Cfilter id='n'%3E%3CfeTurbulence type='fractalNoise' baseFrequency='0.85' numOctaves='3'/%3E%3C/filter%3E%3Crect width='100%25' height='100%25' filter='url(%23n)' opacity='0.04'/%3E%3C/svg%3E\"), radial-gradient(circle at 78% -10%, rgba(46,184,114,0.22), transparent 60%), radial-gradient(circle at -10% 120%, rgba(14,32,29,0.6), transparent 65%), linear-gradient(rgba(245,242,234,0.12) 1px, transparent 1px) 0 0 / 64px 64px, linear-gradient(90deg, rgba(245,242,234,0.12) 1px, transparent 1px) 0 0 / 64px 64px, #0e201d"}}}},"domainId":"2d06f484-eead-4a21-83a2-2b3cbd432a06","landingPageId":"958ca318-a014-4ccc-8f67-f86f052d21b6"}]

Secure SoftwareSupply Chain Guide

Secure Software
Supply Chain Guide