Happy New Year!
To kick off 2019 we will be covering a vulnerability that is complex in context. All developers are aware of the varieties of privilege
The universe of open source is exploding.
Last week “news” broke about a 3-year old jQuery vulnerability that was just discovered, and had just been patched. On the surface, it sounded like a big
A few years ago, I was sitting in a windowless conference room, watching a middle manager in the enterprise get ready to speak. From the substance of the
On March 1, 2018, the team at Semmle announced a critical vulnerability in the Pivotal Spring framework. The vulnerability was found by security researcher
Stefania Chaplin kicks off the DevSecOps Delivered Series on how to detect and fix open source vulnerabilities in your applications.
The OpenChain Project identifies key recommended processes for effective open source management. The project builds trust in open source by making open