Software dependencies have several benefits for software developers. They help to deliver software quickly by providing pre-built functionality and extending the project's capabilities.

Dependencies play an important role in the software development cycle and are used at various stages such as development, execution, and testing. However, dependencies can also introduce compatibility issues, security vulnerabilities, and dependence on external updates or maintenance. It is essential that dependencies are properly assessed and managed, including version management.

In this session, we will explore different types of dependencies, highlight the hidden costs of dependency management, provide concise guidelines for using open-source libraries, and discuss important security considerations to improve the software development process.

We will focus on tools, guides, proposals from the OSSF Foundation, CNCF, OWASP and CDF

Main focus on Tools, Guides, Suggestions from the OSSF Foundation, CNCF, OWASP