SDxCentral

Endor Labs, 7 Others Launch Opengrep to Keep Static Code Analysis Open Source

Endor Labs has collaborated with Aikido Security, Arnica, Amplify, Kodem, Legit, Mobb, and Orca Security to introduce Opengrep, an initiative designed to maintain open access to static code analysis ...
Dark Reading

Open Source Code: The Next Major Wave of Cyberattacks

Open source software is ubiquitous. It has become an unequaled driver of technological innovation because organizations that use it don't have to reinvent the wheel for common software components.
dbta

Sonar Ushers in Support for Third-Party, Open Source Code Analysis and Security

Sonar, the leading provider of integrated code quality and code security solutions, is unveiling SonarQube Advanced Security, a significant advancement in code security which will soon be available.
Semiconductor Engineering

2024 Open Source Security And Risk Analysis Report

Persistent open source security concerns Why developers need to improve at keeping open source components up-to-date The need for a Software Bill of Materials (SBOM) for software supply chain ...
SiliconANGLE

CodeSecure and FOSSA partner to enhance visibility into open source and binary code

Application security testing company CodeSecure Inc. today announced a new strategic partnership with open-source compliance and security platform provider FOSSA Inc. and introduced a product ...
Electronic Design

CGM And Static Code Analysis Provide Safer Applications

There are many parallels between the use of organic fertilizer such as corn gluten meal (CGM) and code analysis tools for application development (Fig. 1). Both need to be used on a regular basis for ...
SiliconANGLE

Code, community and the future: 13 takeaways from Open Source Summit NA

Beyond uniting developers under shared ideologies, goals and pain points, Open Source Summit North America ignited conversations at the intersection of code, community and change. Against the backdrop ...