"Secure the Software Supply Chain"
Leading organizations address growing regulatory pressures with automation
Discover how top organizations use automation to meet growing regulatory pressures like EU CRA and FDA requirements. BSIMM16 data shows 30% increase in automated SBOM generation. Download the report.The post Leading organizations ...
Catch critical defects before embedded software ships
Prevent costly post-deployment failures in embedded software. Learn how "shift everywhere" strategies and automated testing catch defects early in the SDLC.The post Catch critical defects before embedded software ships appeared first on ...
Vibe coding and its implications
Explore the concept of vibe coding, its benefits, risks, and best practices. Learn how to harness AI-assisted development while maintaining software security and integrity. The post Vibe coding and its implications appeared ...
AI coding security gap: 76% of orgs expose software supply chain to risk
95% of organizations use AI for development, but only 24% properly evaluate AI-generated code for security, IP, and quality risks. Learn how to protect your software supply chain.The post AI coding security ...
The Shai-Hulud npm malware attack: A wake-up call for supply chain security
Discover how the Shai-Hulud npm malware attack compromised over 180 packages through sophisticated supply chain tactics. Learn mitigation strategies to protect your projects from similar npm malware threats.The post The Shai-Hulud npm ...
The recent npm supply chain attack: Lessons in securing your software dependencies
Discover how the recent npm software supply chain attack compromised 18 widely used packages and learn key strategies to strengthen your software supply chain security.The post The recent npm supply chain attack: ...
What you need to know about the NIST Secure Software Development Framework
Learn about the NIST Secure Software Development Framework (SSDF) and how to implement its practices to enhance software security. Discover the benefits of SSDF for software producers and consumers.The post What you ...
Unlocking the full potential of application security: Key findings from the Black Duck customer value study
Discover how Black Duck's AppSec solutions improve productivity, reduce software risk, and lower costs. Learn from the UserEvidence study about the benefits of integrating AppSec throughout the SDLC.The post Unlocking the full ...
Understanding Section 524B of the FD&C Act
Discover FDA Section 524B requirements for medical device cybersecurity, SBOM mandates, post-market monitoring, and how to ensure compliance. The post Understanding Section 524B of the FD&C Act appeared first on Blog ...
Beyond detection: Understanding vulnerability reachability in SCA
Explore how vulnerability reachability enhances SCA risk prioritization by distinguishing exploitable versus non-exploitable open source vulnerabilities. The post Beyond detection: Understanding vulnerability reachability in SCA appeared first on Blog ...
