Develop Secure Software logo

John P. Mello Jr.

John P. Mello Jr.
Freelance technology writer. John's work has appeared in the The Boston Globe and Boston Herald, as well as CFO, CIO, CSO, and Inc. magazines. He is a former managing editor of the Boston Business Journal and Boston Phoenix, as well as a staff writer for Government Security News.

Recent Posts from John P. Mello Jr.

SBOMs are critical to software supply chain security — but only the first step in your journey
October 24, 2022

SBOMs are critical to software supply chain security — but only the first step in your journey

SBOMs are key to software supply chain security. But they are also only the first step on your software supply chain journey. Here's what you need to know.
Read More
Packagist PHP repo supply chain attack: 3 key takeaways
October 12, 2022

Packagist PHP repo supply chain attack: 3 key takeaways

A PHP repository vulnerability threatened millions of sites. Here's why you need to make an SBOM the first step in your software supply chain security journey.
Read More
Gartner explains why SBOMs are critical to software supply chain security management
October 4, 2022

Gartner explains why SBOMs are critical to software supply chain security management

With modern software development practices leaning heavily on third-party sources — and attacks surging on that software supply chain — Gartner expects SBOM adoption to go from 5% to 60% in 2025.
Read More
OpenSSF's npm best practices: A solid first step for software supply chain security — but trust issues remain
September 14, 2022

OpenSSF's npm best practices: A solid first step for software supply chain security — but trust issues remain

Here's what you need to know about the new OpenSSF npm security best practices.
Read More
The SBOM is evolving: 4 key trends that will boost software supply chain security
September 6, 2022

The SBOM is evolving: 4 key trends that will boost software supply chain security

Software bills of materials will never be a panacea for software supply chain security. Here are key trends that will deliver some welcome evolution, however.
Read More
5 reasons to stop blaming developers for software security fails
August 26, 2022

5 reasons to stop blaming developers for software security fails

It's counterproductive to blame developers for software security woes. Here are five reasons why.
Read More

SUBSCRIBE

Subscribe to the develop.secure.software newsletter to stay up to speed, learn best practices and more.