The “Software Vulnerability Snapshot” reports that 95% of tests uncovered vulnerabilities in target apps
Learn about the key takeaways from the “Software Vulnerability Snapshot” report, which examines security issues uncovered in web and mobile apps. The post The “Software Vulnerability Snapshot” reports that 95% of tests uncovered vulnerabilities in target apps appeared first on Application Security Blog ... Read More
BSIMM13: Trends and recommendations to help improve your software security program
Understanding the latest BSIMM report trends can help you plan strategic improvements to your own security efforts. The post BSIMM13: Trends and recommendations to help improve your software security program appeared first on Application Security Blog ... Read More
What’s new in the 2021 ‘Open Source Security and Risk Analysis’ report
As the use of open source has grown, so has the number of vulnerabilities. Uncover the latest findings from the 2021 OSSRA report. The post What’s new in the 2021 ‘Open Source Security and Risk Analysis’ report appeared first on Software Integrity Blog ... Read More
2023 OSSRA: A deep dive into open source trends
Open source is everywhere, as is the need to properly manage it. Get the latest open source trends from the 2023 OSSRA report ... Read More
Six key findings from the ‘DevSecOps Practices and Open Source Management in 2020’ report
Synopsys surveyed 1,500 IT professionals working in cyber security to analyze the DevSecOps practices used to address open source vulnerability management. The post Six key findings from the ‘DevSecOps Practices and Open Source Management in 2020’ report appeared first on Software Integrity Blog ... Read More
Making SCA part of your AST Strategy
Open source software is now used in nearly every organization, which makes it critical to know your code. Learn how an SCA tool can help you. The post Making SCA part of your AST Strategy appeared first on Software Integrity Blog ... Read More
TANSTAAFL! The tragedy of the commons meets open source software
Open source projects can become victims of their own success. What can developers do to secure their open source software? The post TANSTAAFL! The tragedy of the commons meets open source software appeared first on Software Integrity Blog ... Read More
Why developers need a supplemental source to NVD vulnerability data
The NVD is a good source for open source vulnerability data. But with an average 27-day reporting delay, it shouldn’t be your only source of information. The post Why developers need a supplemental source to NVD vulnerability data appeared first on Software Integrity Blog ... Read More
5 key takeaways from the 2020 Open Source Security and Risk Analysis report
Our analysis of 1,250+ codebases reveals trends in open source use, security, and license compliance that affect development, security, and legal teams. The post 5 key takeaways from the 2020 Open Source Security and Risk Analysis report appeared first on Software Integrity Blog ... Read More
Open source software use grows in Germany, but compliance and risk management need improvement
A new report from Bitkom reveals that among companies that use open source, many aren’t sure of the best way to approach open source risk management. The post Open source software use grows in Germany, but compliance and risk management need improvement appeared first on Software Integrity Blog ... Read More