Is AI-generated code secure? Maybe. Maybe not.

Learn more about the pros and cons of AI-generated code use by developers and how Black Duck solutions can help.The post Is AI-generated code secure? Maybe. Maybe not. appeared first on Blog ... Read More
Scalable SAST and SCA in a single solution with Polaris fAST services

Scalable SAST and SCA in a single solution with Polaris fAST services

Polaris fAST services is fast, powerful, and easy-to-use cloud-based application security testing, optimized for DevSecOps. The post Scalable SAST and SCA in a single solution with Polaris fAST services appeared first on Application Security Blog ... Read More
Capabilities critical to the success of your AppSec program

Capabilities critical to the success of your AppSec program

In the 2023 Gartner® Magic Quadrant™ for Application Security Testing, Synopsys placed highest and farthest right for the fifth consecutive year for our Ability to Execute and Completeness of Vision ... Read More
Three DevSecOps challenges and how to mitigate them

Three DevSecOps challenges and how to mitigate them

The shift from DevOps to DevSecOps poses a number of problems for developers. Learn how to overcome the most common challenges in DevSecOps adoption. The post Three DevSecOps challenges and how to mitigate them appeared first on Software Integrity Blog ... Read More
Announcing Polaris support for GitHub Actions

Announcing Polaris support for GitHub Actions

New GitHub Action helps DevOps teams build fast while staying secure. The post Announcing Polaris support for GitHub Actions appeared first on Software Integrity Blog ... Read More
Under pressure: Managing the competing demands of development velocity and application security

Under pressure: Managing the competing demands of development velocity and application security

Nearly 50% of development teams knowingly release vulnerable code. Learn why vulnerabilities are overlooked and how you can improve application security. The post Under pressure: Managing the competing demands of development velocity and application security appeared first on Software Integrity Blog ... Read More
New DevSecOps study highlights need to address AppSec throughout the SDLC

New DevSecOps study highlights need to address AppSec throughout the SDLC

The findings reaffirm the importance of shifting security left in the development process, enabling development teams with ongoing training as well as tooling solutions that complement their current processes so they can code securely without negatively impacting their velocity. The post New DevSecOps study highlights need to address AppSec throughout ... Read More
Maintaining your AppSec program through office closures and economic uncertainty

Maintaining your AppSec program through office closures and economic uncertainty

Here are three ways application security teams can respond to staffing challenges and increased security risks today while strengthening their AppSec program for the future. The post Maintaining your AppSec program through office closures and economic uncertainty appeared first on Software Integrity Blog ... Read More
Find and fix open source and proprietary code security defects in the IDE with Polaris and Code Sight

Find and fix open source and proprietary code security defects in the IDE with Polaris and Code Sight

With new SCA capabilities, the Code Sight IDE plugin detects vulnerabilities (CVEs) in the open source you use, alongside weaknesses in proprietary code. The post Find and fix open source and proprietary code security defects in the IDE with Polaris and Code Sight appeared first on Software Integrity Blog ... Read More
Do you have the right tools in your application security toolkit?

Do you have the right tools in your application security toolkit?

With so many application security tools, how do you choose the best ones for your environment? Learn how to assemble your application security toolkit. The post Do you have the right tools in your application security toolkit? appeared first on Software Integrity Blog ... Read More