The Future of Supply Chain Security - Janet Worthington - ASW #343
Application Security Weekly (Audio) · Security Weekly Productions
August 12, 202542m 13s
Audio is streamed directly from the publisher (dts.podtrac.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Open source software is a massive contribution that provides everything from foundational frameworks to tiny single-purpose libraries. We walk through the dimensions of trust and provenance in the software supply chain with Janet Worthington. And we discuss how even with new code generated by LLMs and new terms like slopsquatting, a lot of the most effective solutions are old techniques.
Resources
- https://www.forrester.com/blogs/make-no-mistake-software-is-a-supply-chain-and-its-under-attack/
- https://www.forrester.com/report/the-future-of-software-supply-chain-security/RES184050
Show Notes: https://securityweekly.com/asw-343