DevOps.com

Hot Topics

Tag: software composition analysis

SCA composition OpenText software zombie

The Scariest Things About SCA

| | appsec, appsec tools, code scanning, SCA, software composition analysis
It is a time of ghouls, mischievous spirits and David S. Pumpkins. In the spirit of Halloween, here are the top five scariest limitations of software composition analysis (SCA) tools that are ...
Codenotary SBOM DevOps Intel VMware security

SCA, SBOMs and Floodgates

| | open-source components, SBoM, SCA, software bill of materials, software composition analysis
Two criteria are used to determine pervasiveness of a new idea. Availability of an easy-to-understand solution and customer need. Given both of these items, what might be a market-differentiating feature available in ...
tools systems EraSearch developers

DevSecOps Tools: Hot Air Ahead

| | code scanning, devsecops, devsecops automation, dynamic analysis, interactive analysis, software composition analysis, static analysis scanning tools
I, like most of you, don’t like hardcore marketing that hinges its statements on “Well, that’s technically true…” I also am not a fan of talking heads that spew predictions about the ...
shift left Jit Rezilion DevSecOps Shifting Left and Static Code Analysis with Perforce

GitLab Allies With Rezilion to Add Workload Analysis Tool

| | code scanning, gitlab, Rezilion, SBoM, software composition analysis
Rezilion has integrated its workload analysis tool with the continuous integration (CI) framework provided by GitLab. The move is part of an effort to make it simpler for developers to discover issues ...
storage workloads GrammaTech VMware Cisco

GrammaTech Adds SBOM Analysis Capability to CodeSentry

| | GrammaTech, SBoM, software composition analysis, Software Supply Chain
GrammaTech today updated its CodeSentry code inspection platform to include the ability to create a software bill of materials (SBOM) by analyzing application binaries. Walter Capitani, director of technical product management for ...
Risks and Potential Impacts Associated with Open Source

The Risks and Potential Impacts Associated with Open Source

| | open source, open source software, oss, SCA, security, software composition analysis
Open source software (OSS) is built by communities of developers who contribute their knowledge and time to OSS projects they find appealing. That code can then be used by individuals, communities and ...
The Challenge of Securing Open Source Applications

The Challenge of Securing Open Source Applications

| | application security, open source, SCA, software composition analysis
As enterprises have increased their reliance on applications over the years, there has been a significant rise in the use of reusable software components such as third-party libraries and open source code ...