---
id: "prereq-slsa"
type: "prereq"
source_timestamps: ["¶15"]
tags: ["software-engineering", "security"]
related: ["entity-slsa-framework", "action-extend-provenance"]
reason: "Necessary to implement the author's first action item regarding tracking AI code provenance."
sources: ["futures"]
sourceVaultSlug: "hbr-seg-futures"
originDay: 2
articleStem: "hbr-cl-84-big-tech-capability-crisis"
sourceUrl: "https://hbr.org/2026/06/big-techs-looming-capability-crisis"
sourceTitle: "Big Tech’s Looming Capability Crisis"
---
# SLSA Framework Knowledge

## Prerequisite — SLSA Framework Knowledge

The text references [[entity-slsa-framework|SLSA]] (Supply-chain Levels for Software Artifacts) without defining its mechanics, assuming the reader knows it as a standard for securing the software supply chain through provenance.

**Why it's required:** you can't implement [[action-extend-provenance|Step 1 of the framework]] (AI-code provenance) without it.

> Enrichment: the natural adjacent field is *software supply-chain security* — provenance, reproducibility, and signed builds.
