Dependency Management and Supply Chain Security

Register to watch this content

By submitting your email you agree to the Terms of Service and Privacy Statement
Watch this content now

Tracks covered by this talk

About this talk

Modern software has dependencies – lots of dependencies, especially when including the transitive ones. Most of those dependencies are open source and are available via public package repositories.

Any of those dependencies may have vulnerabilities, supply chain attacks or use unwanted licenses.

All this may change with any version. In this session we will have a look at different techniques and tools (Renovate, syft, etc.) for choosing and managing dependencies and see how you can prevent different types of security issues.

Christian Köberl

👨‍💻 All-end developer and software gardener 🏢 Chief Technical Architect at Porsche Informatik

Sponsor this Event

Your logo could go here!

If you'd like to get your brand in front of attendees contact us.