Presented at @OWASPLondon Chapter “You secured your code dependencies, is that enough?”
Focus is on things other then SBOM / code imports that will and have in past result in compromises and you should have awareness about.
https://slides.anantshri.info/dzKZn9/you-secured-your-code-dependencies-is-that-enough