Which of the following BEST mitigates the risk of a software supply chain attack, such as the SolarWinds-type attack?