Rapid Software Composition by Assessing Untrusted Components
Software Engineering Institute
While third-party components have long been a foundation for DoD software, we may need to adopt greater numbers of such components—and in a more agile fashion. We may also need to take on more risk to deliver capabilities more rapidly.
For this project, researchers provide component scorecards based on project health measures and quality attribute indicators that will enable the automated assessment of external components with greater developer confidence, supporting rapid software delivery.