Software Integrity

Archive for the 'Black Duck by Synopsys' Category

 

Open source issues in an M&A target’s code: How do you know?

Until you ask, you don’t know how much open source a target has used, what components it uses, or what open source issues might be latent therein. That’s why open source questions are on the checklist of virtually every acquirer in a tech transaction. And the unfortunate reality is that even asking good questions doesn’t […]

Continue Reading...

Posted in Black Duck by Synopsys, Featured, Open Source Governance, Open Source Licenses | Comments Off on Open source issues in an M&A target’s code: How do you know?

 

Microsoft acquires GitHub, Election Insecurity, and Ticketfly data breach

  Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and unsecurity in this week’s Security Mashup episode. What’s in this week’s Security Mashup episode, you ask? GitHub acquired by Microsoft, election insecurity persists, and the Ticketfly data breach.  Play this week’s episode below:   Microsoft has snapped up […]

Continue Reading...

Posted in Application Security, Black Duck by Synopsys, Open Source Security, Weekly Security Mashup | Comments Off on Microsoft acquires GitHub, Election Insecurity, and Ticketfly data breach

 

Announcing OpsSight Container Security 2.0 GA

Containers have restructured the way we think about our infrastructure, bringing development and operations teams closer together than ever before, and placing applications center stage in the infrastructure environment. Teams are massively scaling containerized deployments with Kubernetes and Kubernetes-based solutions, like Red Hat’s enterprise-grade container orchestration platform, OpenShift Container Platform. But in containerized deployments, because […]

Continue Reading...

Posted in Black Duck by Synopsys, Containers | Comments Off on Announcing OpsSight Container Security 2.0 GA

 

We’re a 2018 NEVY Awards finalist for Cybersecurity Company of the Year

New England is a crowded space when it comes to cyber security, technology, and innovation, which is why we’re so honored to be named a finalist for the Cybersecurity Company of the Year Award in the 2018 NEVY Awards, hosted by the New England Venture Capital Association (NEVCA) and presented by Bristol-Myers Squibb. Believe me, […]

Continue Reading...

Posted in Black Duck by Synopsys | Comments Off on We’re a 2018 NEVY Awards finalist for Cybersecurity Company of the Year

 

Webinar: DevSecOps best practices with Synopsys and GitHub

As firms consistently strive to become more agile, cloud and containers can help them build software faster and deliver continuously. At the same time, many firms fear that adding security to DevOps practices can severely slow down processes. With GitHub and Black Duck by Synopsys, firms can automate secure development workflows, shift security left, and […]

Continue Reading...

Posted in Application Security, Black Duck by Synopsys, DevOps, Open Source Security | Comments Off on Webinar: DevSecOps best practices with Synopsys and GitHub

 

Data breaches and more data breaches—oh my!

It’s been quite an interesting few weeks in the land of data breach disclosures. We started with Under Armour disclosing a breach in their MyFitnessPal application that impacted 150 million users. A few days later, Lord & Taylor and Saks Fifth Avenue disclosed a breach impacting millions of their in-store shoppers. Later the same day, […]

Continue Reading...

Posted in Application Security, Black Duck by Synopsys, Data Breach, Security Conference or Event, Security Standards and Compliance | Comments Off on Data breaches and more data breaches—oh my!

 

Fine-tuning roles, controlling licenses, and matching code snippets in Hub 4.5

Any tradesperson, specialist, expert, aficionado, or technologist will tell you that the key to a quality outcome is a set of tools specific to the project and oriented to the goal. The realm of software security and secure DevOps is no exception to this truth, and in Black Duck Hub’s version 4.5 release, we further […]

Continue Reading...

Posted in Black Duck by Synopsys, Open Source Licenses | Comments Off on Fine-tuning roles, controlling licenses, and matching code snippets in Hub 4.5

 

Happy 3rd birthday to the Black Duck Hub

Happy Birthday Hub! Black Duck Hub was born from customer feedback 3 years ago and has come a long way since. To celebrate this milestone, some of the Black Duck crew share their favorite Hub moments. If you watch to the end Ducky might even have a special message!

Continue Reading...

Posted in Black Duck by Synopsys | Comments Off on Happy 3rd birthday to the Black Duck Hub

 

Synopsys maintains leadership position in the 2018 Gartner Magic Quadrant for Application Security Testing

I’m proud to report that the 2018 Gartner Magic Quadrant for Application Security Testing has positioned Synopsys as a leader for the second consecutive year. This designation clearly illustrates our growing vision and ability to execute on our solutions. Building a track record of leadership I’d like to take a moment also to call out […]

Continue Reading...

Posted in Agile Methodology, Black Duck by Synopsys, CI/CD, DevOps, Interactive Application Security Testing (IAST) | Comments Off on Synopsys maintains leadership position in the 2018 Gartner Magic Quadrant for Application Security Testing

 

What and who are the Open Source Rookies of the Year?

We’re delighted to continue the decade-long tradition established by Black Duck of recognizing outstanding projects in the open source community that were created over the last year. These are the 10th Annual Open Source Rookies of the Year awards, recognizing the top new open source projects initiated in 2017. Last year we saw a focus […]

Continue Reading...

Posted in Black Duck by Synopsys | Comments Off on What and who are the Open Source Rookies of the Year?