How To Secure Open-Source Dependencies - BONUS

How To Secure Open-Source Dependencies - BONUS

Stephen Chin


December 16, 2022

Powered by RedCircle

Show Notes

Supply chain security, a subset of supply chain management, is concerned with the risk management of third-party vendors, suppliers, logistics, and transportation.

Stephen Chin is the Head of Developer Relations at JFROG. He is also a Speaker and the Author of DevOps Tools for Java Developers. Stephen joins Chuck for this bonus episode to talk about Supply Chain Security and He begins by sharing some instances of how attackers are able to access different companies’ assets, software, systems, and others. 

Additionally, Stephen offers solutions on how to prevent or eliminate those attacks. is a solution that secures open-source builds and distribution with the goal of securing the software supply chain of open-source dependencies.