DevOps.com3 days agoInformation securityLineaje Adds Module to Manage Open Source Software Security Lifecycle - DevOps.comLineaje's Open Source Manager (OSM) with AI helps prioritize remediation efforts for DevOps teams. [ more ]
Theregister4 weeks agoInformation securitySoftware supply chain security still in early days, says CEOSoftware supply chain vulnerabilities are increasing due to reliance on untrusted sources, requiring better management and vetting processes. [ more ]
Developer Tech News1 month agoInformation securityGitHub's 2FA rollout boosts supply chain securityGitHub implemented mandatory 2FA for code contributors to enhance software supply chain security. [ more ]
Talkpython1 month agoPythonSoftware Supply Chain Security with PhylumThe article discusses the importance of ensuring security in software supply chains, with insights from an industry expert. [ more ]
DevOps.com3 months agoPrivacy professionalsTechstrong Research: Combatting CI/CD Security Anti-Patterns - DevOps.comThe security of software supply chains and CI/CD pipelines is crucial in modern software delivery processes. Identifying and rectifying CI/CD security anti-patterns is vital to protect against potential breaches and attacks. [ more ]
DevOps.com3 months agoInformation securityReversingLabs Applies AI to Better Secure Application Binaries - DevOps.comReversingLabs has launched Spectra Assure, a binary analysis tool that uses machine learning to identify risks in software packages. The tool can analyze the entire software package, including first-, second-, and third-party components, to identify potential threats. Spectra Assure is designed for both software producers and organizations that deploy software, filling a gap in the software supply chain. [ more ]
DevOps.com6 months agoPrivacy professionalsCISA, NSA Issue Supply Chain Security Guidance Report - DevOps.comThe NSA, ODNI, and CISA have issued guidance to improve software integrity and security. The guidance focuses on the software supply chain and addresses potential risks. Open source software management and software bills of materials (SBOM) are emphasized as best practices. [ more ]