Tag: open source
Lineaje Leverages AI Agents to Secure Open Source Packages and Images
Lineaje has added artificial intelligence (AI) agents that leverage multiple types of code scanners to ensure the open-source software packages and artifacts being used by application developers are truly secure ...
Report: Commercial Software Just as Vulnerable as Open Source
An analysis published by ReversingLabs, a provider of tools for securing application development environments, suggests that commercial software used in software supply chains is just as vulnerable as open-source code ...
Open Source: Pros and Cons to Consider Before Taking the Plunge
You can move from closed source to open source, or from a more restrictive license to a more open license, whenever you like, and you will receive nothing but applause from the ...
Semaphore Goes Open Source: A New Dawn for DevOps Professionals
Semaphore's CI/CD platform goes open source under Apache 2.0, offering DevOps professionals a scalable solution without vendor lock-in. Explore how this changes the game ...
Consortium Driving OpenStack to Become Arm of The Linux Foundation
The Open Infrastructure Foundation (OpenInfra), which oversees the development of the open source OpenStack cloud computing framework, this week agreed to become an arm of The Linux Foundation as part of an ...
Black Duck Analysis Surfaces Raft of Open Source Software Vulnerabilities in Code Bases
An analysis of 965 commercial codebases across 16 industries conducted in 2024 finds 86% of commercial codebases evaluated contained open-source software vulnerabilities, with 81% of them known to be high- or critical ...
Open Source Software Security Concerns with Spike Curtis
Spike Curtis, principal engineer for Coder Technologies, dives into why open source software security concerns are valid, and why the only viable option is to invest more in securing software supply chains ...
Life After Death, HeroDevs Acquires Xeol To Remediate Unsupported Software Zombies
Adrian Bridgwater | | application development, depracated, developers, Devops for legacy, open source, securityXeol tracks end-of-life data in 100,000+ open-source software packages to help identify and remediate unsupported software in one streamlined workflow ...
Endor Labs Forks Semgrep to Opengrep for Static Code Analysis
Adrian Bridgwater | | CI/CD, continuous integration, continuous testing, developers, devops, devsecops, open source, software developmentSoftware application development lifecycle (SDLC) analysis company Endor Labs has worked with a cadre of industry partners to now launch Opengrep, a toolset designed to ensure static software application code analysis remains ...
Software Dev Culture Shock: “I Have to Do WHAT Now!?”
Software bills of materials (SBOMs) have sparked a real culture shock in developer teams that are being made to account for – and be scrutinized over – the minute decisions they make ...
Best of 2024: Valkey is Rapidly Overtaking Redis
Steven J. Vaughan-Nichols | | database, dbms, key-value database, Linux Foundation, open source, Redis, source available, valkeyRedis is taking it in the chops, as both maintainers and customers move to the Valkey Redis fork ...
Perforce Forks Puppet, Community Considers Muppet
Adrian Bridgwater | | ai, continuous delivery, continuous testing, devops, open source, software developmentDevOps platform company Perforce is forking Puppet, the open-source configuration management technology it acquired in May 2022 ...
