2019 saw developments in many free and open source software legal issues, including new models, ethical restrictions, blockchain, and data and cryptography.
Interest in DevSecOps is on the rise. What’s driving this interest? And how can teams use this knowledge to modernize their application security programs?
Learn about the addition of Black Duck to VMware Cloud Marketplace and the benefits and limitations of different types of open source scans.
The Black Duck Connector for OpenShift, which identifies and tags open source components, can now scan Red Hat Quay container registry images via a webhook.
There’s no single silver bullet for application security. Instead, you need a combination of application security tools and services. Here’s an overview.
Learn about management practices inspired by open source principles and how a structured approach to secure software development is the best way forward.
The downward trend in organizations passing PCI DSS interim security testing is worrying. PCI DSS compliance requires security every day, not once a year.
On National Data Privacy Day, we find little has changed in what numerous privacy advocates and experts have called “the golden age of surveillance.”
Already using static code analysis? Try boosting your application security program with software composition analysis to automate open source management.
Finastra, a leading global Fintech company, has entered a partnership with the Synopsys Software Integrity Group to bring security to its app ecosystem.