Securing the Software Supply Chain

Presented by

Jeff Martin, Vice President of Product Management at Mend

About this talk

Securing the Software Supply Chain - Key Findings From the Mend Open Source Risk Report: Open source vulnerabilities are in permanent growth mode. A significant quarterly increase in the number of malicious packages published in registries such as npm and rubygems have shown the increasing need to protect against this trending attack. At the same time, companies that struggle to close the remediation gap on known vulnerable open source code. It’s all in the The Mend Open Source Risk Report, which details these and other significant risks posed by the ongoing rise in open source vulnerabilities and software supply chain attacks. Join Jeff Martin, Vice President of Product Management at Mend, as he discusses key findings from the report—and why this growing threat is a mounting concern in an app-driven world.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (48)
Subscribers (17133)
Mend, formerly known as WhiteSource, effortlessly secures what developers create. Mend uniquely removes the burden of application security, allowing development teams to deliver quality, secure code, faster. With a proven track record of successfully meeting complex and large-scale application security needs, the world’s most demanding software developers rely on Mend. The company has more than 1,000 customers, including 25 percent of the Fortune 100, and manages Renovate, link here, the open-source automated dependency update project. For more information, visit, the Mend blog, and Mend on LinkedIn and Twitter.