Many of the largest companies rely on third-party code to run critical parts of their software. However, there's often little focus on ensuring the quality of these external dependencies. Today we speak with Feross Aboukhadijeh, CEO and founder of <a href="https://socket.dev/">Socket</a>, a developer-first security platform. Socket helps developers and security teams release software faster and reduce time spent on security busywork. Feross is also a lecturer at Stanford, where he teaches CS233 Web Security. We discuss why the quality of third-party dependencies matters, when to start addressing this issue, how to handle unmaintained dependencies, and what tools are available for managing third-party dependencies. After listening to the episode, be sure to visit the <a href="https://socket.dev/">Socket website,</a> connect with Feross on <a href="https://x.com/feross">Twitter</a>, and check out his <a href="https://feross.org/">personal website</a>. Mentioned in this episode: Socket at <a href= "https://socket.dev/">https://socket.dev/</a>  Feross on X at <a href= "https://x.com/feross">https://x.com/feross</a>  Feross website at: <a href= "https://feross.org/">https://feross.org/</a>

<description>&lt;p dir="ltr"&gt;Many of the largest companies rely on third-party code to run critical parts of their software. However, there's often little focus on ensuring the quality of these external dependencies.&lt;/p&gt; &lt;p dir="ltr"&gt;Today we speak with Feross Aboukhadijeh, CEO and founder of &lt;a href="https://socket.dev/"&gt;Socket&lt;/a&gt;, a developer-first security platform. Socket helps developers and security teams release software faster and reduce time spent on security busywork. Feross is also a lecturer at Stanford, where he teaches CS233 Web Security. We discuss why the quality of third-party dependencies matters, when to start addressing this issue, how to handle unmaintained dependencies, and what tools are available for managing third-party dependencies.&lt;/p&gt; &lt;p dir="ltr"&gt;After listening to the episode, be sure to visit the &lt;a href="https://socket.dev/"&gt;Socket website,&lt;/a&gt; connect with Feross on &lt;a href="https://x.com/feross"&gt;Twitter&lt;/a&gt;, and check out his &lt;a href="https://feross.org/"&gt;personal website&lt;/a&gt;.&lt;/p&gt; &lt;p dir="ltr"&gt;Mentioned in this episode:&lt;/p&gt; &lt;p dir="ltr"&gt;Socket at &lt;a href= "https://socket.dev/"&gt;https://socket.dev/&lt;/a&gt; &lt;/p&gt; &lt;p dir="ltr"&gt;Feross on X at &lt;a href= "https://x.com/feross"&gt;https://x.com/feross&lt;/a&gt; &lt;/p&gt; &lt;p dir="ltr"&gt;Feross website at: &lt;a href= "https://feross.org/"&gt;https://feross.org/&lt;/a&gt; &lt;/p&gt;</description>

Many of the largest companies rely on third-party code to run critical parts of their software. However, there's often little focus on ensuring the quality of these external dependencies. Today we speak with Feross Aboukhadijeh, CEO and founder of , a...

Legacy Code Rocks

Quality-Check of External Dependencies with Feross Aboukhadijeh

Quality-Check of External Dependencies with Feross Aboukhadijeh

Description