S3E30: Resilient Cyber w/Varun Badhwar

In this episode of Resilient Cyber, Chris Hughes is joined by Varun Badhwar, CEO of Endor Labs, to discuss the ever-evolving challenges of open source software (OSS) governance and vulnerability management. Varun shares his insights into the complexities of managing software dependencies in modern application development and how organizations can improve their software supply chain security.

🔑 Key Highlights:

• Software Supply Chain Risks: Why 80-90% of modern code is borrowed from third-party sources and how that impacts software security.

• Dependency Management Challenges: From selection to maintenance, what organizations need to know about managing open source software dependencies.

• Vulnerability Noise: How Endor Labs reduces vulnerability "noise" by analyzing how dependencies are actually used within code.

• S-BOM & VEX: The role of Software Bill of Materials (S-BOM) and Vulnerability Exploitability Exchange (VEX) in securing software supply chains.

• Future of Software Supply Chain Security: Varun’s insights on what the next 2-3 years may look like for dependency management and OSS governance.

Join us to explore cutting-edge strategies for reducing risk and managing open source software effectively.