‘Organisations must own the security implications of third party code in their software’: Mike Hanley, GitHub

While cybersecurity starts with the developer, organisations must own the security implications of using third party code in their own software.