Session: It Depends: understanding your dependency graph for fun and risk mitigation
Open Source Software is a critical part of software development today. Software dependencies, including indirect dependencies, can often present surprising legal or security risks.
This talk introduces some of the complexities of transitive dependencies, the challenges of knowing why you depend on and why, and what we can do as developers to build and maintain healthier software and manage Open Source projects.