DevOps.com

Tag: Apache Log4j

Cycode CodeLogic scanning Contrast Security secrets scan dynamic

ShiftLeft Report Reveals State of Application Security

| | Apache Log4j, application security, application vulnerability, shift left, ShiftLeft
A report published today by automated application security testing platform ShiftLeft found only one in three applications has an attackable vulnerability. The report also found organizations that prioritized their remediation efforts based ...
SRE DevOps jobs Log4Shell patching security DevSecOps

Report Finds Most Log4Shell Vulnerabilities Unpatched

| | Apache Log4j, Java vulnerability, Log4Shell, Rezilion
A report published today by Rezilion, a provider of a platform for tracking and analyzing software vulnerabilities, found that despite all the attention the Java zero-day Log4Shell vulnerability attracted, it appears that ...
Log4j supply chain

Log4j: It’s All About the Supply Chain, Baby!

| | Apache Log4j, devsecops, log4j, supply chain
In 2021, the security story in DevOps and DevSecOps has been the supply chain. So, it’s only fitting that we are currently experiencing the mother of all supply chain issues with the ...
JFrog Pulumi Log4j infrastructure security

Log4j: Is There Such a Thing as ‘Too Much’ Open Source?

| | Apache Log4j, Log4J vulnerability, open source projects, open source security
The Log4j vulnerability got me thinking: Is there such a thing as too much open source? Before anyone immediately fires off a flaming email, rage tweet or scathing blog post, hear me ...