AppSec developers at Citi have pledged to open source a platform they have developed to protect software supply chains by automating continuous security checks on the software and libraries requested by developers. The proliferation of open source software has provided another way for malicious or simply malformed software components to find their way into corporate software stacks and beyond.
Read full article on The New Stack