OpenMined Privacy Conference - Day 1 - Part 2 Livestream

PrivacyRaven Has Left the Nest

By Suha S. Hussain, Georgia Tech If you work on deep learning systems, check out our new tool, PrivacyRaven—it’s a Python library that equips engineers and researchers with a comprehensive testing suite ...
Community ID support for Wireshark

Community ID support for Wireshark

By Christian Kreibich, Principal Engineer, Corelight The past few weeks have seen several developments around Community ID, our open standard for rendering network traffic flow tuples into a concise textual representation. I’d ...

Detecting Zerologon (CVE-2020-1472) with Zeek

By Yacin Nadji, Corelight Security Researcher CVE-2020-1472 aka Zerologon, disclosed by Tom Tervoort of Secura, is an illustrative case study of how a small implementation mistake in cryptographic routines cascades into a ...

OSS Index Contributor Asks: Where ‘R’ You?

Editor's Note: Many people contribute their time and talents to open source projects. It's always interesting to discover the diversity of expertise and perspective. Many developers are introduced to Sonatype by way ...

Observability Made Easy with Synthetic Monitoring

When Christina Yakomin (@SREChristina) started her journey toward synthetic monitoring, she owned a platform for containerized applications and all of the underlying infrastructure. But she didn't own the applications themselves that were ...

How to Easily Identify Conda Vulnerabilities Using Sonatype Jake

Vulnerabilities in our Python environments are really irritating. They slow us down, are difficult to identify, and can delay the development process. What makes them more frustrating is that most of these ...
WhiteSource Python

WhiteSource Adds Python Support to Vulnerability Discovery Tool

WhiteSource today announced it has extended to reach of its tool for scanning for vulnerabilities in open source application code to include support for the Python programming language. Jeffrey Martin, director of ...
Security Boulevard
t2 / 2016 -  Learning the wrong lessons from Offense (Haroon Meer)

Evolving Threat series — Infiltrating Python’s Software Supply Chain

Evolving Threat series — Infiltrating Python’s Software Supply ChainZDNet published this interesting post 2 days ago titled “Two malicious Python libraries caught stealing SSH and GPG keys” which sets stage to what is coming ...

Proxy a Conda Repository Using Nexus Repo

We’ve supported Python developers for a number of years now. With the most recent Nexus Repository release, we are extending our reach with the official coverage of Conda in Nexus Repository Manager ...
🤷🏻‍♀️

Polyglot FizzBuzz in R (Plus: “Why Can’t Johnny Code?”)

| | C++, Javascript, python, R
I caught this post on the The Surprising Number Of Programmers Who Can’t Program from the Hacker News RSS feed. Said post links to another, classic post on the same subject and ...