How do you ensure production code is secure?

We have a peer review (PR) process. The PR process requires code to be reviewed by a senior review or code owner before being merged into production. We also use Github Dependabot to ensure we are not errantly introducing insecure libraries to our development repositories.