AWS and Cloudanix team co-authored this blog: Real-Time Threat and Anomaly Detection for Workloads on AWS

Shielding Software Supply Chain With Francois Proulx

For application security, start with threat modeling including context. Look at all our architecture diagrams and start evaluating from an attacker's mind.When using open source dependencies, start with a baseline vulnerability scan and do a continuous process to review and evaluate dependencies.Understand dependencies, SBOM to verify validity of dependencies. One of the tools to do this is deps.dev.

In this Scale to Zero podcast episode, we had the very cool Francois Proulx! With his expertise in Software Supply Chain Security and Application Security, he shared some really deep and helpful thoughts in this field. He has also shared some resources for folks who are getting started.

You can read the complete transcript of the epiosde here >

Learnings from the podcast

  1. For application security, start with threat modeling including context. Look at all our architecture diagrams and start evaluating from an attacker’s mind.
  2. When using open source dependencies, start with a baseline vulnerability scan and do a continuous process to review and evaluate dependencies.
  3. Understand dependencies, SBOM to verify validity of dependencies. One of the tools to do this is deps.dev.
Comprehensive cloud security platform covering code to cloud protection

Security for your Code, Cloud and Data

Cloudanix replaces your 5-6 disjointed security tools within 30 minutes.

Get Started

Blog

Read More Posts

Your Trusted Partner in Data Protection with Cutting-Edge Solutions for
Comprehensive Data Security.

Tuesday, Feb 10, 2026

The 2026 CNAPP Compliance Framework: Turning Audit from Crisis to Continuity

Introduction: The Death of the Point-in-Time Audit In the high-velocity cloud landscape of 2026, the traditional app

Read More

Thursday, Feb 05, 2026

CSPM vs. CNAPP: Navigating Cloud Security Evolution for Modern Enterprises

The shift to cloud-native architectures represents a fundamental change in how applications are designed, built, and dep

Read More

Thursday, Jan 22, 2026

Top 10 Identity and Access Management Solutions

Identity and Access Management (IAM) has traditionally been considered one of the boring parts of security. But with the

Read More