Revision Date Author Comments
# 99f9aacd 22-Jan-2024 Manish V Badarkhe <manish.badarkhe@arm.com>

Merge "docs(threat-model): supply chain threat model TF-A" into integration
# b908814c 08-Dec-2023 laurenw-arm <lauren.wehrmeister@arm.com>

docs(threat-model): supply chain threat model TF-A

Software supply chain attacks aim to inject malicious code into a
software product. There are several ways a malicious code can be
injected into a

docs(threat-model): supply chain threat model TF-A

Software supply chain attacks aim to inject malicious code into a
software product. There are several ways a malicious code can be
injected into a software product (open-source project).

These include:
- Malicious code commits
- Malicious dependencies
- Malicious toolchains

This document provides analysis of software supply chain attack
threats for the TF-A project

Change-Id: I03545d65a38dc372f3868a16c725b7378640a771
Signed-off-by: Lauren Wehrmeister <lauren.wehrmeister@arm.com>

show more ...