Fred is a senior technical writer at Synopsys. He is a Mini Cooper fanboy and has worked for both Google and Bob Dylan at various points in his career.
A new report from Bitkom reveals that among companies that use open source, many aren’t sure of the best way to approach open source risk management.
Posted in Open Source Security | Comments Off on Open source software use grows in Germany, but compliance and risk management need improvement
You know that static analysis can find code quality defects in your proprietary code. But what are you doing to manage your open source code quality risk?
Posted in Open Source Security, Software Composition Analysis (SCA) | Comments Off on Code quality and maintenance: Emerging risks of open source use
“Vulnerabilities in the Core,” a report from the Linux Foundation and the Laboratory for Innovation Science at Harvard, offers insight into open source use.
Posted in Open Source Security | Comments Off on There’s no such thing as TMI when it comes to open source software
Already using static code analysis? Try boosting your application security program with software composition analysis to automate open source management.
Posted in Application Security, Open Source Security, Software Composition Analysis (SCA) | Comments Off on Taking the next step in your application security program
Using static code analysis (SAST) and software composition analysis (SCA) together makes your software development process better, faster, and stronger.
Posted in Application Security, Open Source Security, Software Composition Analysis (SCA), Static Analysis (SAST) | Comments Off on Coverity & Black Duck together. Better. Faster. Stronger.
With a software bill of materials (software BOM), you can respond quickly to the security, license, and operational risks that come with open source use.
Posted in Open Source Security, Software Composition Analysis (SCA) | Comments Off on What is a software bill of materials?
Smart organizations in the business of building software need to use a mix of application testing tools to ensure their code is high-quality and secure.
Posted in Open Source Security, Software Composition Analysis (SCA) | Comments Off on JDA Software: Extending their SDLC to remediate open source issues
Managing open source risk is essential today, when open source use is abundant but can threaten your business. Here are three key points from our webinar.
Posted in Mergers & Acquisitions, Open Source Security, Webinars | Comments Off on 3 takeaways from “Managing the Business Risks of Open Source” webinar
The U.S. House Committee on Oversight and Government Reform has more than a few things to say about responsible enterprise application security.
Posted in Data Breach Security, Open Source Security | Comments Off on Security lessons from the House Oversight and Government Reform Committee
Don’t let cloud security threats rain on your parade. Explore our list of the top 10 security risks in cloud computing and what you can do to mitigate them.
Posted in Cloud Security | Comments Off on 10 critical cloud security threats in 2018 and beyond
