AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
2min chapter
End of Year Wrap Up
Security Cryptography Whatever
S-Bombs Fucking Software Bill of Materials
Log4j wasn't really what you would call a supply chain no it was just a vulnerability in a third party dependencyYeah exactly i don't know which is more commonly known as like security right yeah right. I keep hearing about s-bombs fucking software bill of materials yeah and i just don't want to have to do more work to make an executive order be checked for something that isn't gonna offer a tangible security benefit. Unless you are a mega mega mega large organization if you are using if you are tracking just your third party dependency sanely you probably have things coming in from different uh different versions, he says.
00:00
Transcript
Episode notes
Get the Snipd
podcast app
Unlock the knowledge in podcasts with the podcast player of the future.
AI-powered
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode
Save any
moment
Hear something you like? Tap your headphones to save it with AI-generated key takeaways
Share
& Export
Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more
AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode