Protecting the open source software supply chain - GCN
Google Launches GUAC Open Source Project to Secure Software Supply Chain
The best free, open-source supply-chain security tool? The lockfile
Google, IBM and others launch an open-source API for keeping tabs on software supply chains | TechCrunch
Securing the Development & Supply Chain of Open Source Software (OSS)
Sonatype 2017 State of the Software Supply Chain Report Reveals DevOps Practices Reduce Use of Defective Open Source Components by 63 Percent | Business Wire
Open source and the software supply chain | Opensource.com
Open source security support
2022 open source supply chain survey | Tidelift
OpenSSF Announces 13 New Members Committed to Strengthening the Security of the Open Source Software Supply Chain - Open Source Security Foundation
OpenChain + Toyota Case Study: Kaizen and Open Source spur Innovation across the Global Supply Chain - OpenChain
Are Supply Chain Attacks From Open Source? | Kiuwan
The Best Free and Open Source Supply Chain Management Software
The Challenges of Securing the Open Source Supply Chain - The New Stack
Features - OpenLMIS
2021 State of the Software Supply Chain: Open Source Security and Dependency Management Take Center Stage - All Things Open 2021
open-source-supply-chain
Breaking trust: Shades of crisis across an insecure software supply chain - Atlantic Council
Open source 'a threat to software supply chains' - report | Supply Chain Magazine
3 ways the ActiveState Platform can secure your open source supply chain
Open Source Software Projects Up Their Security Game but Face More Attacks
Attacks on Open Source Supply Chains: How Hackers Poison the Well | SAP Blogs
Protect your open source project from supply chain attacks | Google Open Source Blog
The Challenges of Securing the Open Source Supply Chain - The New Stack
Open Source Security Foundation launches new initiative to stem the tide of software supply chain attacks | The Daily Swig
Supply chain attacks against the open source ecosystem soar by 650% – report | The Daily Swig
![PDF] Managing Your Open Source Supply Chain-Why and How? | Semantic Scholar](https://d3i71xaburhd42.cloudfront.net/5c45823d36ff1524ebea2bf16fd2483a54000799/4-Figure1-1.png "PDF] Managing Your Open Source Supply Chain-Why and How? | Semantic Scholar")
PDF] Managing Your Open Source Supply Chain-Why and How? | Semantic Scholar
State of the 2021 Software Supply Chain Provided by Sonatype | StickyMinds
2018 Has Been Open Season on Open Source Supply Chains | Threatpost
