In today’s cloud-native and open source world, an application is made up of many components. Companies need to understand how the software supply chain works so they can ensure their own software is secure.
Software integrity is more important than ever, especially in light of the SolarWinds hack.
In this short clip from our full length discussion on Securing The Software Supply Chain, Jim Zemlin, Executive Director of the Linux Foundation, explains how the modern software supply chain works and what companies should understand about it.
He encourages all software consumers (which basically includes everyone) to understand where their software comes from, who wrote it, what license it holds, and is that software written in a secure manner.
If you’re interested in assessing your own code for vulnerabilities, try out a free trial of CodeInsights where you will quickly see a Code Risk Score for all of your code.