Software is running the world – and it is everywhere. More and more elements of major businesses and industries are being run on software and delivered as online services. So much of the software on which the world depends is open source software.
Explore this white paper to understand dependency integrities that exist within open source code packages and why they represent the weakest link within a software supply chain. This will also help you understand why an analysis of the code repository, contributor reputation, and code behavior is imperative for uncovering compromised code dependencies.