290: The state of software supply chain security (with Sonatype's Brian Fox)

In this episode, David Rubinstein interviews Brian Fox, co-founder and CTO of Sonatype. They discuss the company's 10th annual State of the Software Supply Chain report. 

Key talking points include: 

• The rapid growth of malicious open-source components
• The increasing length of time needed to remediate vulnerabilities
• How regulations impact supply chain security

Note: This will be the final episode of What The Dev released in 2024. We'll be back in early January 2025!