Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Open Source

bearer

We are open sourcing our SAST solution!

Mar 7, 2023 By Guillaume Montard In Bearer

For the last two years, we’ve been quietly building a new kind of static application security testing (SAST) solution that allows security and engineering teams to assess, prioritize, and remediate security risks and vulnerabilities in their code by what matters most - sensitive data. Today, we are officially announcing its release as an Open Source project, Bearer.

Read Post
mend

FINOS: The State of Open Source in Financial Services

Mar 7, 2023 By Adam Murray In Mend

In partnership with Mend, the Fintech Open Source Foundation (FINOS) recently published its report, “The 2022 State of Open Source in Financial Services.” The report serves up a set of fascinating insights into the pace of open source adoption in the financial services sector. From optimizing benefits to overcoming obstacles, the report provides a valuable snapshot of open source software adoption in finance. Here’s a quick look at the report’s key findings.

Read Post
mend

Securing the Software Supply Chain: Key Findings from the Mend Open Source Risk Report

Feb 28, 2023 By Adam Murray In Mend

Threat actors will always target the things most important to businesses, and today, that means applications–the lifeblood of the global economy. As the recent Mend Open Source Risk Report reveals, the ongoing rise in open source vulnerabilities and software supply chain attacks presents significant business risk. The number of open source vulnerabilities are growing, just as threat actors are launching increasingly sophisticated attacks.

Read Post
mend

Open Source License Management Tools: Features and Best Practices

Feb 16, 2023 By Adam Murray In Mend

Effectively managing the many open source licenses used in enterprise software is a complex task that requires a thorough evaluation of key features in software license management tools. After that, you need to implement the technology using several best practices. In this blog post, let’s take a brief look at both.

Read Post
bytesafe

Don't be the weakest link

Feb 14, 2023 By Bytesafe
Open source provides a shortcut to functionality developed by others. But with exponential growth in the use of open source there is a very real risk of businesses failing to keep track of components, their dependencies and licenses. It's more important than ever to stay in control of the code your applications depend on and with typically hundreds of dependencies, this is not a small task. Avoid being the weakest link - understand the risks associated with your software supply chain and how to control them!
Get EBook
synopsys

Navigating software due diligence with a Black Duck Audit

Feb 10, 2023 By Steven Power In Synopsys
A Black Duck Audit provides a complete picture of the software risks in your acquisition target’s software or your own. Deciding on the best approach to managing software due diligence can be a significant challenge for organizations. Frequent acquirers have a playbook, but every transaction is different, and approaches must evolve as the market changes.
Read Post
gitguardian

CloudNativeSecurityCon 2023: A Unique Community Event Focused On The Future Of Open Source and Cloud Native Security

Feb 8, 2023 By Dwayne McDaniel In GitGuardian

Read some of the highlights from CloudNativeSecurityCon 2023, the first-of-its-kind in-person event, grown from the conversations of the community on the front lines of open source security.

Read Post
Subscribe to Open Source

Copyright © 2024 OpsMatters™. All rights reserved.