Safeguard
Tag

supply-chain

Safeguard articles tagged "supply-chain" — guides, analysis, and best practices for software supply chain and application security.

757 articles

Industry Analysis

Space Industry Software Supply Chain: Emerging Reality

COTS software, mega-constellations, and export controls are colliding. The space sector's software supply chain risk is shifting faster than its tooling.

Dec 28, 20246 min read
Incident Analysis

Zoom Incidents: Software Supply Chain Dimensions

Zoom's security history from 2020 onward reshaped how the industry thinks about conferencing software supply chains, from installers to third-party components.

Dec 28, 20247 min read
Regulatory Compliance

Digital Health HIPAA Supply Chain Intersection

Digital health startups collide with HIPAA obligations as soon as they touch clinical data. A regulatory map of the supply chain choke points.

Dec 22, 20247 min read
DevSecOps

Reproducible Builds Debian: The Long View

Debian's Reproducible Builds project has been at it for over a decade. Here's what they've learned, what still isn't reproducible, and why it matters.

Dec 20, 20248 min read
Open Source Security

Rust Embedded Supply Chain Guide

Rust is moving into embedded production fast. The supply chain shape for firmware is different from server-side Rust — smaller trees, longer lifetimes, tighter regulations.

Dec 18, 20246 min read
Industry Analysis

Azure Sentinel for Supply Chain Detection

Sentinel has everything it needs to detect supply chain attacks in Azure — but only if the analytics rules are tuned to what those attacks actually look like.

Dec 15, 20248 min read
Industry Analysis

BlackTech Firmware Supply Chain Operations

BlackTech's firmware implants in Cisco routers turned edge devices into long-dwell footholds. A look at the tradecraft and what defenders missed.

Dec 15, 20246 min read
Industry Analysis

Open Source Security Funding in 2024: Who Pays for the Code We All Depend On

Despite growing recognition that open source underpins critical infrastructure, security funding remains fragmented and insufficient. A look at the numbers and what needs to change.

Dec 10, 20247 min read
DevSecOps

Turborepo Monorepo Supply Chain Security

Turborepo makes large JavaScript monorepos fast, and speed changes how teams think about dependencies. The supply chain implications are subtle enough that a fast-moving team can be in trouble before anyone notices.

Dec 10, 20248 min read
Best Practices

Crypto Exchange Supply Chain Hardening

Crypto exchanges are the highest-value software supply chain targets on the internet. A hardening playbook drawn from Lazarus, Ronin, and 3CX.

Nov 28, 20247 min read
Best Practices

Zero Trust Principles Applied to the Software Supply Chain

Zero trust is not just a network architecture concept. Applied to the software supply chain, it fundamentally changes how organizations verify code, dependencies, and build processes.

Nov 25, 20247 min read
Industry Analysis

Azure Monitor for Supply Chain Observability

Supply chain observability in Azure is not missing telemetry — it is missing the right queries. A walk through the Azure Monitor data sources that actually answer the hard questions.

Nov 22, 20248 min read
supply-chain (Page 33) — Safeguard Blog