Securing The Modern Software Supply Chain With Adrian Ludwig
The Secure Developer
Getting Your Act Together About Dependency Management and Tracking What You Are Using
There's a much more substantial demand to actually upgrade the libraries regardless of whether they are exploitable or not. Microsoft was right at the forefront of saying basically asking our security team to prove that something is exploitable is a waste of time. But I think that hasn't really sunk into the relationship between security teams and engineering teams. They're just going to say, assume everything is exploitable and you have to fix this.
00:00
Transcript
Play full episode
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
