Скачать или смотреть How 21 dependencies become 1,000: Understanding your software supply chain | GitHub Checkout

Did you know that up to 97% of your application's code can come from open source dependencies? Securing the software supply chain is critical. Join us on GitHub Checkout as we explore the GitHub Dependency Graph, the feature that gives you a full picture of every package your project relies on, helping you find and prioritize vulnerabilities with Dependabot before they become major issues.

#GitHub #Security #SoftwareSupplyChain

— CHAPTERS —

00:00 Introduction
00:40 Understanding the dependency graph
02:16 Direct vs transitive dependencies
03:12 Why software supply chains matter
04:27 Package Ecosystems & Tree Generation
06:00 Prioritizing vulnerabilities with SBOMs
07:20 How to enable Dependency Graph
08:35 Final thoughts

Stay up-to-date on all things GitHub by subscribing and following us at:
YouTube: http://bit.ly/subgithub
Blog: https://github.blog
X:   / github  
LinkedIn:   / github  
Instagram:   / github  
TikTok:   / github  
Facebook:   / github  

About GitHub:
It’s where over 100 million developers create, share, and ship the best code possible. It’s a place for anyone, from anywhere, to build anything—it’s where the world builds software. https://github.com