This was the opening talk at Rootconf 2025's Software Supply Chain Security track. I wanted to do a context-setting talk that setup the context for the rest of the track - so it covers a lot of ground, all of the interesting updates in the space, attack vectors, vulnerabilities, and defense mechanisms.
You can see the slides with my Speaker Notes at https://captnemo.in/talks/2025/around-scs-nemo-with-notes.pdf