open source development Archives

A penguin, running towards us, beak wide open and screaming

Linux Vendors Squawk: PATCH NOW — CVSS 9.8 Bootkit Bug in shim.efi

Richi Jennings | February 8, 2024 | BIOS, CVE-2023-40547, Enterprise Linux and Open Source, Linux, open source, Open Source and Software Supply Chain Risks, open source code, Open Source Community, open source components, open source development, Open Source Ecosystem, SB Blogwatch, secure boot, shim, UEFI, UEFI Failing, UEFI vulnerabilities

Snow joke: A Microsoft researcher found it—and it’s somehow Microsoft’s fault ...

Security Boulevard

Unveiling BlazeStealer Malware Python Packages on PyPI

In a recent revelation, a cluster of malicious Python packages has infiltrated the Python Package Index (PyPI), posing a significant threat to developers’ systems by aiming to pilfer sensitive information. These deceptive ...

TuxCare

Software dependencies: A beginner’s guide

Aaron Linskens | October 27, 2023 | dependencies, open source development, software supply chain, Sonatype Lifecycle

An overwhelming majority of modern software development utilizes open source software components. Individual components rarely operate in isolation. When one component relies on another to work properly, that is defined as a ...

Sonatype Blog

Smarter policy and advanced component search with Nexus Lifecycle updates

Chris Good | June 30, 2022 | Nexus Lifecycle, open source development, policy, Product Release, search

In March, we talked about improvements to the Nexus Lifecycle policy tools and waivers. This month we’ve taken another step forward with better policy and waiver controls. This update helps development teams ...

Sonatype Blog

New Developer Tools for Open Source Dependency Management

Chris Good | March 15, 2022 | Nexus Lifecycle, Nexus Repository, open source development, Product Release

Sonatype's focus on developers brings more insights into software dependencies, clearer policy exceptions, and support for PHP users. This Nexus platform update will help developers more easily remediate vulnerable open source usage ...

Sonatype Blog

How to Become an OSS Champion

Katie McCaskey | July 26, 2019 | DevOps culture, News and Views, open source development, open-source-software, Post developers/devops

Open source software components yield a competitive marketplace advantage. So why do some development teams resist and rebel? ...

Sonatype Blog

open source development

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On