ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "S1E4 - 5 Steps for Securing Your Open Source Supply Chain"
Episode Synopsis
Season 1: Open Source Security
Episode 4: 5 Steps for Securing Your Open Source Supply Chain
Most modern applications are assembled from open-source components with developers typically writing less than 15% of the code for their application. Here are the 5 Steps for securing your open source supply chain.
Step 1: Maintain a Software Bill of Materials (SBOM)
Step 2: Perform Due Diligence - Scan for Vulnerabilities
Step 3: Have a Centralized Artifact Repository - Use Only Approved Software
Step 4: Always Use Latest - Don't Use Stale Components
Step 5: Run a Web Application Firewall (WAF)
Episode 4: 5 Steps for Securing Your Open Source Supply Chain
Most modern applications are assembled from open-source components with developers typically writing less than 15% of the code for their application. Here are the 5 Steps for securing your open source supply chain.
Step 1: Maintain a Software Bill of Materials (SBOM)
Step 2: Perform Due Diligence - Scan for Vulnerabilities
Step 3: Have a Centralized Artifact Repository - Use Only Approved Software
Step 4: Always Use Latest - Don't Use Stale Components
Step 5: Run a Web Application Firewall (WAF)
More episodes of the podcast AppSec Unlocked
S2E12 -The Future of Security Training
23/06/2025
S2E11 - Security Training for Remote Teams
09/06/2025
S2E10 - Cloud Security Awareness
26/05/2025
S2E9 - Secure Development Lifecycle Training
12/05/2025
S2E4 - Security Culture by Design
03/03/2025
In God we trust