The CISA Secure Software Development Attestation Form sets cybersecurity standards for US Federal agency software purchases. Learn how Sonatype helps you comply with SSDF guidelines.
Over the past four years, Sonatype has surveyed open source development organizations and year after year, we find that developers have the best intentions.