Software supply chain security (SCS) is rapidly gaining unwelcome notoriety as high-impact breaches hit the headlines. Third-party software suppliers SolarWinds, Apache (Log4j), and Kaseya have had far more than fifteen minutes of fame, alerting businesses and governments to the extent of structural weaknesses in the software supply chain and the way organizations build software today.
Download the whitepaper to know
- The software supply chain attack landscape;
- How you need to think about open source in this environment;
- Where SBOM compliance fits and where more robust policies might be needed