Using open-source software is now the norm for most development teams, but with this usage comes several associated security risks.
Chris Eng, VP of research for CA Veracode, chatted with SC Media's Online Editor Doug Olenick on the security issues surrounding the use of open-source software and what can be done to ensure that the code being used has been vetted and is safe.
[hm-iframe width="560" height="315" src="https://www.youtube.com/embed/lHzDNNV9HKE" frameborder="0" allow="autoplay; encrypted-media"]