Course

How to Manage Risks of Open Source Software

This course focuses on actively managing open source risk. You'll learn how vulnerability detection works across the development lifecycle, how to use SCA tools and SBOMs for dependency visibility, and how to assess findings using vulnerability databases and scoring systems.

From there, it covers remediation trade-offs (patching, upgrading, replacing, mitigating) and how to evaluate packages by maintenance, security, and adoption criteria.

By the end of this course, learners will be able to: 

  • Compare remediation strategies and their trade-offs (patching, upgrading, replacing, mitigating)
  • Recognize where common organizational approaches to OSS risk management succeed and where they fall short

Start Learning ActiveState Today

Enroll for free and get instant access to hands-on ActiveState training.

This course is part of the

Open Source Software Security Management

Certification