It’s no secret. Developers use open source — in fact, 85% of a modern application is composed of open source components and unfortunately one in ten open source component downloads contain a known security vulnerability.
Given this inherent risk, how do modern software teams select the best components, govern open source usage, and still deliver at DevOps speed?
Automated open source governance.
Adam Such shares how Sonatype’s Nexus Lifecycle empowers developers and security professionals to make safer open source choices across the SDLC, ensuring organisations continue to innovate with less risk.