- Course
OWASP: Software Supply Chain Failures
From code to CI/CD, your supply chain can be exploited at any step. This course will teach you how to identify, assess, and defend against supply chain weaknesses to keep your code, tools, and pipelines secure.
Intermediate
- Course
OWASP: Software Supply Chain Failures
From code to CI/CD, your supply chain can be exploited at any step. This course will teach you how to identify, assess, and defend against supply chain weaknesses to keep your code, tools, and pipelines secure.
Intermediate
Get started today
Access this course and other top-rated tech content with one of our business plans.
Try this course for free
Access this course and other top-rated tech content with one of our individual plans.
This course is included in the libraries shown below:
- Security
What you'll learn
Software supply chains are more than just code—they include libraries, build pipelines, CI/CD tools, operating systems, and even IDEs. A weakness anywhere in this chain can expose secrets, allow remote code execution, or compromise production systems. In this course, OWASP: Software Supply Chain Failures, you’ll learn to identify, assess, and defend against these risks.
First, you’ll explore the components of a modern software supply chain and understand how vulnerabilities arise.
Next, you’ll discover common supply chain threats, including malicious dependencies, unsafe libraries, and insecure CI/CD pipelines.
Finally, you’ll learn how to implement practical defenses, from dependency management and secure development practices to hardening CI/CD and developer environments.
When you’re finished with this course, you’ll have the skills and knowledge of supply chain security needed to protect your software, tools, and pipelines from modern threats.
OWASP: Software Supply Chain Failures
Intermediate
Table of contents
Gavin is passionate about security and has an extensive background in software development in regulated environments. He currently works in a Red Team at a FTSE 100 company.
