Harness Software Supply Chain Assurance (SSCA) is a new platform that enhances DevSecOps practices by extending security measures beyond application code to the entire software supply chain. It focuses on ensuring software integrity and open-source governance through the generation and validation of Software Bills of Materials (SBOMs) and compliance with SLSA (Supply-chain Levels for Software Artifacts) and Executive Order 14028. SSCA enables organizations to monitor and control third-party artifacts and open-source components, providing deep visibility and the ability to enforce policies on their usage. It supports SBOM orchestration in both CycloneDX and SPDX formats, and offers policy management capabilities to restrict or permit components based on defined criteria. The platform helps maintain software integrity by generating SLSA provenance and verifying it throughout the build pipeline, thus preventing the deployment of risky components and ensuring compliance with security standards.