Is AI-generated code secure? Maybe. Maybe not.
Learn more about the pros and cons of AI-generated code use by developers and how Black Duck solutions can help.The post Is AI-generated code secure? Maybe. Maybe not. appeared first on Blog ... Read More

Scalable SAST and SCA in a single solution with Polaris fAST services
Polaris fAST services is fast, powerful, and easy-to-use cloud-based application security testing, optimized for DevSecOps. The post Scalable SAST and SCA in a single solution with Polaris fAST services appeared first on Application Security Blog ... Read More

Capabilities critical to the success of your AppSec program
In the 2023 Gartner® Magic Quadrant™ for Application Security Testing, Synopsys placed highest and farthest right for the fifth consecutive year for our Ability to Execute and Completeness of Vision ... Read More

Three DevSecOps challenges and how to mitigate them
The shift from DevOps to DevSecOps poses a number of problems for developers. Learn how to overcome the most common challenges in DevSecOps adoption. The post Three DevSecOps challenges and how to mitigate them appeared first on Software Integrity Blog ... Read More

Announcing Polaris support for GitHub Actions
New GitHub Action helps DevOps teams build fast while staying secure. The post Announcing Polaris support for GitHub Actions appeared first on Software Integrity Blog ... Read More

Under pressure: Managing the competing demands of development velocity and application security
Nearly 50% of development teams knowingly release vulnerable code. Learn why vulnerabilities are overlooked and how you can improve application security. The post Under pressure: Managing the competing demands of development velocity and application security appeared first on Software Integrity Blog ... Read More

New DevSecOps study highlights need to address AppSec throughout the SDLC
The findings reaffirm the importance of shifting security left in the development process, enabling development teams with ongoing training as well as tooling solutions that complement their current processes so they can code securely without negatively impacting their velocity. The post New DevSecOps study highlights need to address AppSec throughout ... Read More

Maintaining your AppSec program through office closures and economic uncertainty
Here are three ways application security teams can respond to staffing challenges and increased security risks today while strengthening their AppSec program for the future. The post Maintaining your AppSec program through office closures and economic uncertainty appeared first on Software Integrity Blog ... Read More

Find and fix open source and proprietary code security defects in the IDE with Polaris and Code Sight
With new SCA capabilities, the Code Sight IDE plugin detects vulnerabilities (CVEs) in the open source you use, alongside weaknesses in proprietary code. The post Find and fix open source and proprietary code security defects in the IDE with Polaris and Code Sight appeared first on Software Integrity Blog ... Read More

Do you have the right tools in your application security toolkit?
With so many application security tools, how do you choose the best ones for your environment? Learn how to assemble your application security toolkit. The post Do you have the right tools in your application security toolkit? appeared first on Software Integrity Blog ... Read More