The State of Software Supply Chain 2021 with Ilkka Turunen

Everyone is becoming increasingly aware of supply chains for physical goods.  Software has its own supply chain.  A supply of open source solutions exists as does a demand for these solutions by industry.  Both have surely grown, but it would be nice to have a way of measuring by how much.

The State of Software Supply Chain 2021 is an annual publication now in its 7th year.  It’s released by Sonatype.  In this interview, I speak with their Field CTO Ilkka Turunen.  We review some of the highlights from the report including the state of open source and some particularly interesting statistics about supply chain attacks.


Transcript provided by We Edit Podcasts. Software Engineering Daily listeners can go to to get 15% off the first three months of audio editing and transcription services with code: SED. Thanks to We Edit Podcasts for partnering with SE Daily. Please click here to view this show’s transcript.


Implement world-class incident management with Kintaba. Built by ex-Facebook engineers, Kintaba promotes organization-wide resilience by automating incident response processes and helping companies learn from failure. Visit to get started today.

Don’t let mobile app security be an afterthought. Guardsquare’s mobile application security protections incorporate security early and often within the development lifecycle. To learn more about Guardsquare go to

A user interface is like a joke: if you have to explain it, it’s not that good. If you appreciate that, you might be a software engineer… And if you’re a software engineer, you’ll definitely appreciate the #1 Jira alternative: ClickUp. No more using separate platforms for docs, goals, and sprints—ClickUp brings all your work together in one fast, collaborative platform. Try ClickUp for free at!

Your development team’s time is a scarce resource. Don’t waste it reinventing the wheel. With Auth0 you can save hundreds or thousands of hours in implementation and maintenance. With this premier solution for identity, you can configure advanced features like social login, single sign-on, and multi-factor authentication. Focus on what you’re good at and let Auth0 manage what they’re best at – helping you deliver the best, safest user experience possible. Make login their problem, not yours. Visit to learn more.

SingleStore is built for the smart SaaS generation, and all the data-intensive applications that come with it. The SingleStore cloud powers the new wave of SaaS technologies displacing legacy providers with insights for apps, effortless operation of models at scale, and easy shifts to the cloud.

Introduce simplicity and ease to your data structure, and watch what happens to your speed, scale, and S-Q-L. 

See for yourself at

Software Daily

Software Daily

Subscribe to Software Daily, a curated newsletter featuring the best and newest from the software engineering community.