{"id":569165,"date":"2023-01-24T15:30:00","date_gmt":"2023-01-24T15:30:00","guid":{"rendered":"https:\/\/omni48.com\/?p=569165"},"modified":"2023-02-03T15:44:46","modified_gmt":"2023-02-03T15:44:46","slug":"software-supply-chain-risk-is-growing-but-mitigation-solutions-exist","status":"publish","type":"post","link":"https:\/\/omni48.com\/news\/software-supply-chain-risk-is-growing-but-mitigation-solutions-exist","title":{"rendered":"Software supply chain risk is growing, but mitigation solutions exist"},"content":{"rendered":"<p>In late 2021, a critical vulnerability was discovered within the Apache-Log4j logging tool. This Log4j tool and vulnerability became infamous because it was used by millions of software packages across organizations that had no idea it existed within their software supply chain. Even organizations that develop their own software often leverage third-party commercial and open-source software to support their business services. Software supply chain risk has emerged as a leading concern for private sector firms and government agencies of all sizes. There is even a legislative effort within the Senate Homeland Security and Governmental Affairs Committee to help secure open-source software. Unpacking this supply chain, and finding methods to estimate and reduce the risk, is a massive problem for a number of reasons. First, the number of open-source packages and libraries is tremendous. Github, an online platform that manages software for others, hosts over 200 million software repositories. And each programming language uses its own system for tracking software across<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Software supply chain risk has emerged as a leading concern for private sector firms and government agencies of all sizes.<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1,131],"tags":[],"class_list":["post-569165","post","type-post","status-publish","format-standard","hentry","category-news","category-software"],"acf":[],"_links":{"self":[{"href":"https:\/\/omni48.com\/api\/wp\/v2\/posts\/569165","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/omni48.com\/api\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/omni48.com\/api\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/omni48.com\/api\/wp\/v2\/comments?post=569165"}],"version-history":[{"count":0,"href":"https:\/\/omni48.com\/api\/wp\/v2\/posts\/569165\/revisions"}],"wp:attachment":[{"href":"https:\/\/omni48.com\/api\/wp\/v2\/media?parent=569165"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/omni48.com\/api\/wp\/v2\/categories?post=569165"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/omni48.com\/api\/wp\/v2\/tags?post=569165"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}