Systemic Software Risk in the Enterprise Supply Chain, Part 1

Systemic Software Risk in the Enterprise Supply Chain, Part 1

by | Sep 18, 2020 | Alkemist, Atlantic Council, cyberharden, Lessons from the School of Cyber Hard Knocks, software stack, Software Supply Chain, Supply Chain, Uncategorized

About this Series of Three Blog Posts In July 2020 the Atlantic Council, a highly-respected international affairs leadership institute based in Washington, DC, published a wide-ranging, evidence-based report titled “Breaking Trust: Shades of Crisis Across an Insecure...
Insecure Open Source Code Means Software Stacks Are Vulnerable: Painlessly Fix the Problem with Alkemist:Repo

Insecure Open Source Code Means Software Stacks Are Vulnerable: Painlessly Fix the Problem with Alkemist:Repo

by | Aug 7, 2020 | Alkemist, Alkemist:Repo, Elastic stack, Embedded Software, Enterprise IT, LAMP, MEAN, open source, software stack

The debate surrounding the security of open source code is sure to continue for years to come, but given that 50% of vulnerabilities in open source code often go unmitigated (even after four years), organizations remain exposed.  The usage of open source is nearly...