dependencies
Safeguard articles tagged "dependencies" — guides, analysis, and best practices for software supply chain and application security.
52 articles
Managing End-of-Life Software Dependencies
Every dependency eventually reaches end of life. Here is a practical framework for identifying, tracking, and migrating away from EOL software before it becomes a security liability.
Image Parsing Vulnerabilities in Dependencies: The Pixel-Level Threat
Every application that processes images depends on parsing libraries with a long history of memory corruption bugs. Here is what is at stake.
Why Dependency Pinning Alone Is Not Enough
Pinning dependencies feels like a complete answer to supply chain risk. It is not — and the gap between pinning and real integrity matters more in 2022 than ever.
Business Impact Analysis for Software Dependency Failures
Most BIAs ignore software dependencies entirely. Here is how to quantify the real business impact when a critical library or service goes down.