Opportunities for building robust software supply chains

Software applications depend on large supply chains of open-source libraries. In this talk we review the latest works that aim at hardening the software supply chain of applications. We discuss dependency management, debloating, reproducible builds. Then, we open with opportunities for more research to make software reuse reliable and safe.