Security News > 2022 > April > The state of open-source software supply chain security in 2022
![The state of open-source software supply chain security in 2022](/static/build/img/news/the-state-of-open-source-software-supply-chain-security-in-2022-medium.jpg)
In this video for Help Net Security, Donald Fischer, CEO at Tidelift, talks about the state of open-source software supply chain security in 2022.
Open source is the modern application development platform and is becoming an indispensable part of the software development process for organizations of all sizes.
At this point, 92% of applications contain open-source components.
Despite the many benefits of open source, there are also risks and challenges.
We often see organizations investing a lot of time and resources into their digital infrastructure and their own applications, but it all rests on a few open-source components built by individuals who are independently maintaining that software.
If we don't align our incentives with those open-source maintainers, there's the risk of this infrastructure crumbling down.
News URL
https://www.helpnetsecurity.com/2022/04/21/open-source-software-security-video/
Related news
- It may take decade to shore up software supply chain security, says infosec CEO (source)
- Establishing a security baseline for open source projects (source)
- BLint: Open-source tool to check the security properties of your executables (source)
- OWASP dep-scan: Open-source security and risk audit tool (source)
- Open-source security in AI (source)
- Enhancing security through collaboration with the open-source community (source)
- SELKS: Open-source Suricata IDS/IPS, network security monitoring, threat hunting (source)
- Cilium: Open-source eBPF-based networking, security, observability (source)
- Zeek: Open-source network traffic analysis, security monitoring (source)
- B+ security rating masks healthcare supply chain risks (source)