Closing the door on open source supply chain attacks

Estimated read time 6 min read



While the OSS community has made waves in the past with vulnerability news, the wide usage of the open source Java logging library, Log4j, meant that when that vulnerability was uncovered the floodgates opened. Almost overnight, open source went from a conversation reserved for the depths of Discord channels to being something your mom might ask you about at the breakfast table.

This newfound attention highlighted the crucial interconnection between open source and closed source software components, giving rise to many misconceptions about the open source community.

Brian Fox

It’s not amateur hour over here



Source link

You May Also Like

More From Author

+ There are no comments

Add yours