Insights and Resources

Software Development Is Changing Again…

Development is happening more quickly than ever before, and Department of Defense stakeholders want more automation in software development and acquisitions. Recent strategic initiatives from the White House to the DoD Chief Information Officer are driving

Phylum Research Team Mar 8, 2023 4 min read

Subscribe to our research

Keep up with the latest software supply chain attacks

If SBOMs are a must, let’s make them as effective as possible

Since the announcement of Executive Order 14028, curiosity and confusion around SBOM (Software Bill of Materials) mandates has been widespread. SBOMs are indeed a jumping...

Phylum Research Team Feb 24, 2023 12 min read

Phylum Adds Rust and Go to Its Supported Languages

With these additions, we continue our commitment to providing the broadest software supply chain coverage in the market. According to a Developer Nation report, the...

Phylum Research Team Dec 10, 2022 2 min read

Pick a Python Lockfile and Improve Security

Python dependency management is a nightmare because there are so many ways to do it (ironically un-pythonic) and that can lead to dependency confusion, mis-managed dependencies, stale dependencies, etc. Phylum can read lockfiles from many different sources to make sure you're safe....

Charles Coggins Nov 23, 2022 8 min read

Phylum Research Roundtable 2022

The Phylum Research Team held a roundtable where we reviewed Software Supply Chain Attacks and the recent malware campaigns we have discovered in 2022. The...

Phylum Research Team Nov 21, 2022