Kathleen is performing a security review of an internally developed web application. During her review, she finds that the developers who wrote the application have made use of third-party libraries. What threat should she concern as part of her review?

Each of the options is a potential risk when using third-party libraries or SDKs. Organizations need to understand and assess the risks of third-party code, but it is a common practice to use third-party libraries. Identifying trustworthy and reliable sources and managing the versions and updates are critical to using third-party components safely.