Security News > 2022 > April > The state of open-source software supply chain security in 2022
In this video for Help Net Security, Donald Fischer, CEO at Tidelift, talks about the state of open-source software supply chain security in 2022.
Open source is the modern application development platform and is becoming an indispensable part of the software development process for organizations of all sizes.
At this point, 92% of applications contain open-source components.
Despite the many benefits of open source, there are also risks and challenges.
We often see organizations investing a lot of time and resources into their digital infrastructure and their own applications, but it all rests on a few open-source components built by individuals who are independently maintaining that software.
If we don't align our incentives with those open-source maintainers, there's the risk of this infrastructure crumbling down.
News URL
https://www.helpnetsecurity.com/2022/04/21/open-source-software-security-video/
Related news
- Open source maintainers: Key to software health and security (source)
- Supply Chain Attacks Can Exploit Entry Points in Python, npm, and Open-Source Ecosystems (source)
- Osmedeus: Open-source workflow engine for offensive security (source)
- Am I Isolated: Open-source container security benchmark (source)
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- Debunking myths about open-source security (source)
- AxoSyslog: Open-source scalable security data processor (source)