SEGAS-00007 - Managing the security of software dependencies

More information about SEGAS-00007

More information can be found on the engineering website about SEGAS-00007

Does this codebase pass the following requirement: You MUST assess the security of external components before introducing them into software designs?

More information about You MUST assess the security of external components before introducing them into software designs

More information can be found on the engineering website about You MUST assess the security of external components before introducing them into software designs

Does this codebase pass the following requirement: You MUST maintain a discoverable dependency tree for your systems?

More information about You MUST maintain a discoverable dependency tree for your systems

More information can be found on the engineering website about You MUST maintain a discoverable dependency tree for your systems

Does this codebase pass the following requirement: You MUST proactively identify vulnerabilities in dependencies with scanning and other tools?

More information about You MUST proactively identify vulnerabilities in dependencies with scanning and other tools

More information can be found on the engineering website about You MUST proactively identify vulnerabilities in dependencies with scanning and other tools

Does this codebase pass the following requirement: You MUST regularly update, replace and remove dependencies?

More information about You MUST regularly update, replace and remove dependencies

More information can be found on the engineering website about You MUST regularly update, replace and remove dependencies