Open Source Code Security and Your Enterprise

The average enterprise is relying upon about 3,500 open source projects to support faster software development. Unfortunately, external suppliers of the code are often chosen based on popularity or familiarity rather than code quality. Vice President at Sonatype and the co-founder of All Day DevOps Derek Weeks sat down with us to discuss open source as well as the main findings in the 2019 State of the Software Supply Chain Report. The report details the following:

  • Where open source components are used in software development and how many of them
  • What percentage of components have known security vulnerabilities
  • The policies and regulations on a national and international level that may affect how software is developed

Accenture | SolutionsIQ’s Stephan Lange hosts at the DevOps Enterprise Summit 2019 in Las Vegas.

Download the 2019 State of the Software Supply Chain Report here: www.sonatype.com/en-us/2019ssc

Listen on Apple Podcasts  Listen on Spotify