Dependency Risk
Software dependency risk refers to the potential negative consequences of relying on external software components that can compromise the security, performance, quality or functionality of an organization's software systems.
7 docs tagged with "Dependency Risk"
View All TagsRisks
Roles
Open Source Program Office
The Open Source Program Office (OSPO) is responsible for the overall management and direction of an organization's open source program.
Activities
Making The Case For Contribution
Organisational change can be very hard to achieve since organisations are naturally protective of themselves and the status quo. Setting up an OSPO and beginning an open source journey will seem like a risky and dangerous proposition for many parts of an organisation.
Open Source Supply Chain Security Testing
THIS IS A PLACEHOLDER
Software Inventory
Software inventory is a precondition to most of the activities involved in OSMM level 2. The first step to licence compliance or supply chain security is to understand what software is in your estate.
Training
Generating A Software Bill-Of-Materials
This is an introductory course designed for directors, product managers, open source program office staff, security professionals, and developers.
Artifacts
Open Source Review Board (OSRB)
tbd. what is one.