Search Results for: open source software
You searched for open source software - DevOps.com
OpenSSF Defines Baseline for Securing Open Source Software
The Open Source Security Foundation (OpenSSF) has launched an initiative to provide maintainers of open source software projects with a set of baseline security requirements that can be realistically attained and maintained ...
Black Duck Analysis Surfaces Raft of Open Source Software Vulnerabilities in Code Bases
An analysis of 965 commercial codebases across 16 industries conducted in 2024 finds 86% of commercial codebases evaluated contained open-source software vulnerabilities, with 81% of them known to be high- or critical ...
Open Source Software Security Concerns with Spike Curtis
Spike Curtis, principal engineer for Coder Technologies, dives into why open source software security concerns are valid, and why the only viable option is to invest more in securing software supply chains ...
Sonar Acquires Tidelift to Extend DevSecOps Reach Into Open Source Software
Sonar today revealed it has agreed to acquire Tidelift to gain access to third-party open-source code that it plans to integrate into its static code analysis tools ...
Report Shines Spotlight on Open Source Software Security Challenges
An analysis of more than five million open-source software packages published by Lineaje, a provider of a platform for tracking open-source software components, finds 95% of security issues involve some type of ...
Linux Foundation Report Spotlights Open Source Software Package Challenges
The Linux Foundation in collaboration with multiple providers of software composition analysis (SCA) published a study this week, that in addition to identifying the most widely used software packages, also shined a ...
Scarf Integrates Platform for Tracking Open Source Software Usage With Salesforce
Scarf today at the KubeCon + CloudNativeCon 2024 conference revealed it has integrated its platform for tracking consumption of open source software with the Salesforce customer relationship management (CRM) platform ...
Survey Finds Compensation Drives Better Open Source Software Security Behavior
A survey of 400 maintainers of open-source software projects suggests IT organizations should be paying a lot more attention to the degree to which the stewards of these projects are compensated before ...
White House to Spend $11 Million to Study Open Source Software Use
Hardening the security around open source software has been a key part of the White House’s larger cybersecurity efforts since President Biden released his executive order for improving the United States’ security ...
Endor Labs Adds Analytics and Patching Tools to Secure Open Source Software
Endor Labs today at the Black Hat USA 2024 conference revealed it has added an ability to determine how challenging it might prove to be to upgrade an open source software package, ...
Lineaje Adds Module to Manage Open Source Software Security Lifecycle
This can help DevSecOps teams identify open source software projects that are not being well maintained ...
Securing Open Source Software, the Cyber Resilience Act Way
Steven J. Vaughan-Nichols | | Cyber Resilience Act, cybersecurity standards, Eclipse Foundation, open source, Open Standards, programming, secure developmentThe Eclipse Foundation is spearheading an effort to create a unified framework for secure software development ...
