There is no single solution to this threat, but part of the solution is to change the way we develop.
We have operated in a default 'trust everything' mode, where we embrace dependencies as a zero-cost way of moving fast.
Now we must pivot to reduce, and ideally eliminate dependencies, not only in order to reduce threats, but also ease the maintenance burden.
Embrace #ZeroDependencyDevelopment #ZDD
https://infosec.exchange/@cyberlibrarian/110407491756470483