Security Organizations Need to Start Thinking Like Developers
2 minute read time
Developers must think more securely, and security teams need to learn more development skills. Cross-discipline awareness strengthens software development.
Read More...
Empowering Developers: Security Self Serve and Automated Time-Based Waivers
4 minute read time
Tyro recently empowered their developers to build more secure software by instituting time-based waivers.
Read More...
DevSecOps In The Age Of Containers
3 minute read time
Containers and automated tools create new opportunities for software supply chains and opensource governance as well as system security.
Read More...
Software Liability Gets Real (Global)
5 minute read time
Software liability turns up the volume in France, Germany, the UK, the USA, and the EU in 2018.
Read More...
Nexus Lifecycle: Using REST API to identify where newly vulnerable components reside across your application portfolio
2 minute read time
Using the REST API from Nexus Lifecycle to identify new vulnerable components across your application portfolio.
Read More...
DevSecOps: Dreams, Teams, and Architecture
3 minute read time
DevSecOps: Dreams, Teams, and Architecture. How to bring DevSecOps into your organization.
Read More...
Malicious Intent: Open Source Developers, Please Protect Your Users
1 minute read time
Pay attention to your own digital security as you would if you were protecting millions of others. Malicious code found in npm package conventional-changelog.
Read More...
DevSecOps: Overcoming the Culture of No’s with Chaos
3 minute read time
Automating Security in DevOps: Combating No’s with Chaos. A exploration of DevSecOps practices.
Read More...
Security Processes at the Apache Software Foundation (video and podcast)
1 minute read time
In our continuing series on the Struts2 vulnerability announcement and the breach at Equifax, we spoke with Mark Thomas, Director, Apache Software Foundation
Read More...