In response to the increasing focus on software supply chain security due to breaches like those of SolarWinds and Codecov, Elastic has partnered with Chainguard to assess their software supply chain security using the Supply Chain Levels for Software Artifacts (SLSA) framework. This collaboration aims to address the complexities and potential exposures in software development by isolating threats, enforcing strong access controls, and verifying software integrity at every stage. The assessment, the largest of its kind by Chainguard, evaluated Elastic's security practices through interviews and surveys, resulting in strategic initiatives such as deploying software artifact signing with Sigstore and enhancing detection rules in Elastic Security. The SLSA framework has proved instrumental in identifying risks and guiding mitigative actions, and Elastic continues to engage with the community and technology partners to bolster its security measures while encouraging researchers to focus on supply chain threats through increased bug bounty awards.