Software composition analysis (SCA) can be used to conduct regular vulnerability assessments, be implemented as part of the continuous integration/continuous deployment (CI/CD) pipeline, and be used to enforce an open-source software policy (Alvarenga, 2023a).

Authors

• Person: Not available Organization: Department for Science, Innovation and Technology
  Open source software best practices and supply chain risk ... - GOV.UK

Sources

• Open source software best practices and supply chain risk ... - GOV.UK www.gov.uk Department for Science, Innovation and Technology via serper

Referenced by nodes (4)

• software composition analysis concept
• CI/CD pipeline concept
• Open Source Software policy concept
• vulnerability assessment concept