S1E4 - 5 Steps for Securing Your Open Source Supply Chain

AppSec Unlocked

09-09-2024 • 10 mins

Season 1: Open Source Security

Episode 4: 5 Steps for Securing Your Open Source Supply Chain


Most modern applications are assembled from open-source components with developers typically writing less than 15% of the code for their application. Here are the 5 Steps for securing your open source supply chain.


Step 1: Maintain a Software Bill of Materials (SBOM)

Step 2: Perform Due Diligence - Scan for Vulnerabilities

Step 3: Have a Centralized Artifact Repository - Use Only Approved Software

Step 4: Always Use Latest - Don't Use Stale Components

Step 5: Run a Web Application Firewall (WAF)

You Might Like

Darknet Diaries
Darknet Diaries
Jack Rhysider
TED Radio Hour
TED Radio Hour
NPR
Acquired
Acquired
Ben Gilbert and David Rosenthal
This Week in Tech (Audio)
This Week in Tech (Audio)
TWiT
Two Blokes Talking Tech
Two Blokes Talking Tech
Trevor Long and Stephen Fenech
Daily Tech News Show
Daily Tech News Show
Tom Merritt
Hard Fork
Hard Fork
The New York Times
TechStuff
TechStuff
iHeartPodcasts
Hacked
Hacked
Hacked
The AI Daily Brief (Formerly The AI Breakdown): Artificial Intelligence News and Analysis
The AI Daily Brief (Formerly The AI Breakdown): Artificial Intelligence News and Analysis
Nathaniel Whittemore
All-In with Chamath, Jason, Sacks & Friedberg
All-In with Chamath, Jason, Sacks & Friedberg
All-In Podcast, LLC
Elon Musk Podcast
Elon Musk Podcast
Stage Zero
Bankless
Bankless
Bankless
BBC Inside Science
BBC Inside Science
BBC Radio 4
WSJ’s The Future of Everything
WSJ’s The Future of Everything
The Wall Street Journal
The Vergecast
The Vergecast
The Verge
Search Engine
Search Engine
PJ Vogt
Double Tap
Double Tap
Double Tap Productions Inc.
Security Now (Audio)
Security Now (Audio)
TWiT
Malicious Life
Malicious Life
Malicious Life