Shielding Software Supply Chain With Francois Proulx

For application security, start with threat modeling including context. Look at all our architecture diagrams and start evaluating from an attacker's mind.When using open source dependencies, start with a baseline vulnerability scan and do a continuous process to review and evaluate dependencies.Understand dependencies, SBOM to verify validity of dependencies. One of the tools to do this is deps.dev.

In this Scale to Zero podcast episode, we had the very cool Francois Proulx! With his expertise in Software Supply Chain Security and Application Security, he shared some really deep and helpful thoughts in this field. He has also shared some resources for folks who are getting started.

You can read the complete transcript of the epiosde here >

Learnings from the podcast

For application security, start with threat modeling including context. Look at all our architecture diagrams and start evaluating from an attacker’s mind.
When using open source dependencies, start with a baseline vulnerability scan and do a continuous process to review and evaluate dependencies.
Understand dependencies, SBOM to verify validity of dependencies. One of the tools to do this is deps.dev.

Secure Every Layer of Your Cloud Stack with Cloudanix

Unify your security workflows with Cloudanix — one dashboard for misconfigurations, drift detection, CI/CD, and identity protection.

Get Started

Blog

Your Trusted Partner in Data Protection with Cutting-Edge Solutions for
Comprehensive Data Security.

Tuesday, Sep 30, 2025

Shielding Software Supply Chain With Francois Proulx

Learnings from the podcast

Secure Every Layer of Your Cloud Stack with Cloudanix

Read More Posts

Eliminate Standing Access: Introducing JIT Kubernetes for Azure AKS Security

User Access Review in Cloud Security: A Foundational Guide to Securing Your Cloud Environment

Streamlining Just-in-Time Access: Balancing Security and Developer Workflow Integration