The State of Software Supply Chain Security in 2024 | JFrog
The State of Software Supply Chain Security in 2024 | JFrog
jfrog.com The State of Software Supply Chain Security in 2024 | JFrog
This blog provides an overview of the findings in JFrog's 2024 Software Supply Chain State of the Union Report, which explores current industry trends.
This blog post was posted two days before the discovery of the XZ utils backdoor. It shows the increasing popularity of Docker and NPM. Rust is not in this preview of their report, but all the crates used for compiling a Rust program bring in dependencies. Years ago, xkcd showed the problem already.