Software supply chain security is broader than SolarWinds and Log4j(techcrunch.com)
techcrunch.com
Software supply chain security is broader than SolarWinds and Log4j
https://techcrunch.com/2022/11/29/software-supply-chain-security-is-broader-than-solarwinds-and-log4j/
1 comments
The security vendor landscape is selling a pipedream that “scanners” and “software composition analysis” wares can detect all of the critical vulnerabilities at the software artifact level. They don’t.