Software Integrity Blog

Archive for the 'Open source and software supply chain risks' Category

Open source software has become the foundation of today’s applications. Understanding what’s in your code and how to effectively manage the potential risks can help you address security weaknesses and vulnerabilities in your applications. Discover open source and software supply chain risk management tips and best practices from Synopsys cyber security experts.

 

AppSec Decoded: Key findings from the 2021 OSSRA report

In this episode of AppSec Decoded, we discuss the major open source trends identified within the 2021 OSSRA report.

Continue Reading...

Posted in Open source and software supply chain risks

 

Reduce open source software risks in your supply chain

Knowing what’s in your open source software, whether you’re a consumer or producer, can help you manage security risks in your supply chain

Continue Reading...

Posted in Open source and software supply chain risks

 

How an open source software audit works

Open source software audits can identify undetected issues in your codebase. Learn how our audit services can help you understand the risks during an M&A.

Continue Reading...

Posted in Open source and software supply chain risks

 

Reduce open source risk in M&A with software due diligence

The vast majority of today’s applications are made up of open source components. The 2021 “Open Source Security and Risk Analysis” (OSSRA) report, conducted by the Synopsys Cybersecurity Research Center (CyRC), found that 75% of the 1,500+ codebases analyzed were composed of open source.

Continue Reading...

Posted in Open source and software supply chain risks

 

Ransomware prevention begins with securing your applications

Ransomware prevention measures such as securing your applications can help you avoid becoming the next target.

Continue Reading...

Posted in Open source and software supply chain risks

 

Announcing Synopsys as an OpenChain Project third-party certifier

Synopsys can measure the maturity of security activities within an open source management framework in compliance with the OpenChain standard and ISO/IEC 5230:2020.

Continue Reading...

Posted in Open source and software supply chain risks

 

What’s new in the 2021 ‘Open Source Security and Risk Analysis’ report

As the use of open source has grown, so has the number of vulnerabilities. Uncover the latest findings from the 2021 OSSRA report.

Continue Reading...

Posted in Open source and software supply chain risks

 

Open source license compliance and dependencies: Peeling back the licensing layers

How can you successfully navigate open source license compliance? Start with the right tools to identify your dependences and calculate their risks.

Continue Reading...

Posted in Open source and software supply chain risks

 

AppSec Decoded: Why organizations can’t ignore open source security

In this AppSec Decoded interview, we discuss the security and legal risks companies face when open source security vulnerabilities are ignored.

Continue Reading...

Posted in Open source and software supply chain risks

 

Assessing the state of mobile application security through the lens of COVID-19

Are today’s mobile apps secure or do they offer opportunities for attackers? Learn about the state of mobile application security in our new report.

Continue Reading...

Posted in Open source and software supply chain risks