Administrators befuddled by AWS access-denied messages will welcome a new open-source tool announced Thursday by cloud infrastructure security company Ermetic. The Access Undenied tool…
Tag:
opensource
-
-
Application SecurityNewsSecurity
Developer sabotages own npm module prompting open-source supply chain security questions
The developer of a popular JavaScript component hosted on the npm repository decided to protest Russia’s invasion of Ukraine by adding code to his…
-
Application SecurityNewsSecurity
Alpha-Omega Project takes a human-centered approach to open-source software security
The Log4j vulnerability crisis that erupted in late-2021 heightened the security world’s awareness of supply chain risks in free and universally deployed open-source software.…
-
Application SecurityNewsSecurity
Tech sector embraces public-private collaboration on open-source software security
Hoping to foster improved security of open-source software, the White House hosted a meeting last week with some of the largest public and private…
-
Google is recommending that the US government devote more resources to securing open-source software in light of the Apache Log4J 2 vulnerability, which has…
-
Application SecurityNewsSecurity
Software composition analysis explained, and how it identifies open-source software risks
Software composition analysis definition Software composition analysis (SCA) refers to obtaining insight into what open-source components and dependencies are being used in your application,…