Application Security & Software Security Blog

Get effective DevSecOps with version control

Learn how to use version control to reduce development time and increase the rate of successful software deployments in your DevSecOps strategy.

Synopsys’ Seeker IAST wins Best Cloud and Web Application Security category at CybersecAsia Awards

Seeker was recognized for its leadership and innovation in cloud and web-based application security. Learn how to improve your security posture with IAST.

Making SCA part of your AST Strategy

Open source software is now used in nearly every organization, which makes it critical to know your code. Learn how an SCA tool can help you.

Are you ready for ISO SAE 21434 Cybersecurity of Road Vehicles?

Don’t let cyber security take a back seat in the vehicle life cycle. Learn how to prepare for the upcoming ISO SAE 21434 standard for road vehicles.

The BSIMM: Five key steps to a better software security initiative

The goal of an SSI is to improve security at every stage of the journey. Start and/or improve your SSIs today with these key steps observed in BSIMM11.

Announcing Polaris support for GitHub Actions

New GitHub Action helps DevOps teams build fast while staying secure.

Can SAST tools improve developer productivity?

They can—if you have a SAST tool that helps developers find and fix real security defects rather than hindering their productivity with false positives.

CyRC Vulnerability Advisory: Authentication bypass vulnerabilities in multiple wireless router chipsets (CVE-2019-18989, CVE-2019-18990, and CVE-2019-18991)

Read the Synopsys Cybersecurity Research Center’s (CyRC) analysis of CVE-2019-18989, CVE-2019-18990, and CVE-2019-18991.

Under pressure: Managing the competing demands of development velocity and application security

Nearly 50% of development teams knowingly release vulnerable code. Learn why vulnerabilities are overlooked and how you can improve application security.

Open source licenses: No license, no problem? Or … not?

Understand the three common scenarios for why unlicensed open source is found in the codebase and the implications of it being embedded in commercial apps.

Next Entries »

Be the first to know

Don’t miss the latest AppSec news and trends every Friday.

Subscribe to the blog

Software Integrity Blog

How to Cyber Security: Fuzz a tank

How to get compliance audit training in the new virtual workplace

6 mistakes to avoid when choosing a managed services provider

Get effective DevSecOps with version control

Synopsys’ Seeker IAST wins Best Cloud and Web Application Security category at CybersecAsia Awards

Making SCA part of your AST Strategy

Are you ready for ISO SAE 21434 Cybersecurity of Road Vehicles?

The BSIMM: Five key steps to a better software security initiative

Announcing Polaris support for GitHub Actions

Can SAST tools improve developer productivity?

CyRC Vulnerability Advisory: Authentication bypass vulnerabilities in multiple wireless router chipsets (CVE-2019-18989, CVE-2019-18990, and CVE-2019-18991)

Under pressure: Managing the competing demands of development velocity and application security

Open source licenses: No license, no problem? Or … not?

Legal

Follow