John Speed Meyers

John Speed Meyers is the Head of Chainguard Labs at Chainguard, where he leads research initiatives focused on open source software security, software supply chain security, and container security. His career spans influential roles across research and policy, including positions at IQT Labs, RAND Corporation, and the Center for Strategic and Budgetary Assessments. Meyers has made significant contributions to understanding software supply chain attacks and security, co-authoring influential research on measuring attack frequencies and analyzing open source software components in modern applications. His work suggests that up to 99% of smaller software applications consist of open source code, highlighting the critical importance of supply chain security. As a nonresident senior fellow with the Atlantic Council's Cyber Statecraft Initiative, Meyers contributes to broader policy discussions on cybersecurity. His academic credentials include a PhD in policy analysis from the Pardee RAND Graduate School, a Master of Public Affairs from Princeton's School of Public and International Affairs, and a BA in international relations from Tufts University. Through his research and advocacy, Meyers continues to shape industry understanding of software supply chain security, particularly through his work on frameworks like SBOM (Software Bill of Materials) and his analysis of major security incidents such as Log4Shell and XZ Utils.