What is the Xz Utils Backdoor : Everything you need to know about the supply chain attack
Learn about the Xz Utils Backdoor, what is means for supply chain security, and what you can do to protect yourself. The post What is the Xz Utils Backdoor : Everything you need to know about the supply chain attack appeared first on Software Security ... Read More
AppSec Decoded: Open source trends uncovered in the 2024 OSSRA report
Unpack key open source trends from the 2024 OSSRA report in AppSec Decoded. Gain insights and understand implications for software security in the tech industry.The post AppSec Decoded: Open source trends uncovered in the 2024 OSSRA report appeared first on Software Security ... Read More
2024 OSSRA report: Open source license compliance remains problematic
The 2024 OSSRA report finds that open source license compliance remains problematic. Learn what risks it poses and how to avoid them. The post 2024 OSSRA report: Open source license compliance remains problematic appeared first on Software Security ... Read More
What is a software bill of materials?
Understand the importance of a Software Bill of Materials (SBOM) and how it helps manage security, license, and operational risks in open source usage.The post What is a software bill of materials? appeared first on Software Security ... Read More
CVE-2017-5638: The Apache Struts vulnerability explained
Understand the critical Apache Struts vulnerability CVE-2017-5638 - its origins, potential risks, and methods for mitigation. Stay informed, stay secure.The post CVE-2017-5638: The Apache Struts vulnerability explained appeared first on Software Security ... Read More
2024 OSSRA Report: Dead code risk in open source components
Dead Code, or Zombie Code, is unnecessary code that remains in a codebase. Improve your open source maintenance and mitigate dead code risks with Synopsys.The post 2024 OSSRA Report: Dead code risk in open source components appeared first on Software Security ... Read More
2024 Open Source Security and Risk Analysis Report
Explore key insights into the evolving open source landscape from the 2024 OSSRA report. Learn about the latest OSS trends and effective management strategies.The post 2024 Open Source Security and Risk Analysis Report appeared first on Software Security ... Read More
DevSecOps practices to maintain developer velocity
Learn about DevSecOps practices that help organizations maintain developer velocity and reduce development friction. See how Synopsys solutions enable developer productivity. The post DevSecOps practices to maintain developer velocity appeared first on Software Security ... Read More
Defending against malicious packages in the npm ecosystem and beyond
Learn how to shield your organization from the danger of malicious packages in the npm ecosystem and beyond. ... Read More
2023 OSSRA deep dive: High-risk vulnerabilities
The 2023 OSSRA report indicates that organizations are failing to patch high-risk vulnerabilities; our vulnerability deep-dive shows how to evaluate your own risk. ... Read More