Researchers found a 633% year-over-year increase in software supply chain attacks in 2022 so far, and there has been an annual, overall increase of 742% since 2019.
In this Episode, Barak Brudo (Developer Relations Advocate at Scribe Security) and I have discussed some of the finer points of Software Supply Chain Security, from what it is to what you can do today to make your company’s code much more secure (hint, use an SBOM).
Episode timelines
Resources:
The open-source SBOM: https://github.com/tern-tools/tern
An open-source tool that allows scanning an SBOM for CVEs: https://github.com/anchore/grype