Third-Party Software Risks

Recently, {complink 8103|Coverity Inc.} commissioned the “Software Integrity Risk Report,” a study conducted with Forrester Consulting with an eye on quality and the software supply chain. More than 330 software development influencers were surveyed about their policies for managing software quality, security, and safety. The study confirmed what I have discussed previously — that third-party…

Automated Code Testing of Third-Party Software

To continue our discussion on the different forms of the software supply chain, this month we look at the best-practices for working with third-party software suppliers. (See: How to Work Better With the Open-Source Community.) The largely successful philosophy of why-build-when-you-can-buy has inspired Original Equipment Manufacturers (OEMs) building software and systems to buy software components…