Software supply chain security was analyzed in a recent report by Chainguard. The report found that 70% of developers and 52% of chief information security officers (CISOs) view software supply chain security as a top priority in their roles.
According to the report, 72% of software developers say they are very security-conscious in their roles while 50% of CISOs rate software developers as very security-conscious. Forty-three percent of developers believe that CISOs are "very familiar" with how container images fit into their work, which is low when compared to other aspects of how developers perceive their security team to understand their work: open-source software libraries and projects (61%), source code repositories and source code management systems (60%) and software build tools (59%).