Sonatype Delivers Premium Open Source Controls to GitHub | Press Release

fsisac

 

Software Security Controls for Financial Services

New control type now requiring bill of materials to assess risk of open source software components  

fsisac

 

Software Security Controls for Financial Services

New control type now requiring bill of materials to assess risk of open source software components  

Read this white paper to learn about FS-ISAC guidelines to assess risk of open source software components regardless of the source:

  • Apply policies at the consumption of open source and across the SDLC
  • Use controlled internal repositories to provision open source components
  • Create Bill of Materials for a common reference of open source libraries and components used in application development 

Get FS-ISAC Guidelines