From the course: Azure for DevOps: Dependency Management
Unlock the full course today
Join today to access over 24,600 courses taught by industry experts.
Managing open source vulnerabilities - Azure Tutorial
From the course: Azure for DevOps: Dependency Management
Managing open source vulnerabilities
- [Instructor] In this video we're going to explore how we can manage security for open-source components in our projects. It should come as no surprise that the popularity of open-source software is growing, particularly with enterprises. According to a 2018 open-source program management survey, 72% of companies use open-source for internal or non-commercial purposes. 55% use it for commercial products. So we can be certain a significant amount of software is dependent on open-source packages, and even if your organization isn't using it now, it may in some form in the future. Given the widespread use of open-source, we have to consider what happens when there are vulnerabilities in the packages we use. These security risks have real impacts to businesses. They can leave your organization exposed to hackers. One particularly large data breach was for Equifax in 2017, where they lost data for 150 million clients due to a…