Addressing Software Supply Chains: Open Source Security Insights

In the wake of several major cybersecurity incidents - the most recent being the Colonial Pipeline ransomware attack, the government wants to shore up its software supply chain. There’s no silver bullet, but Open Source shows significant promise in meeting this challenge.

Recent intrusions into federal agencies and critical infrastructure are causing the government to more closely examine how software is made, in addition to who’s making it and where.

Even before President Joe Biden and his transition team entered the White House amid the unfurling SolarWinds crisis, the executive branch was working to collectively reduce weaknesses in the government’s software supply chain. A new executive order gets deeper into core software development techniques than anything from previous administrations.