Topic: checkmarx

Checkmarx API Security released to shift API security left

Checkmarx API Security was launched to empower the partnership between the developer and AppSec teams of an organization and is delivered as part of the Checkmarx One application security platform.  Because APIs are used to access data and to call application functionality, they are easily exposed but difficult to defend which creates a large and … continue reading

Checkmarx KICS now integrated into GitLab 14.5

Checkmarx’s open-source KICS (Keeping Infrastructure as Code Secure) solution has been integrated into version 14.5 of the GitLab DevOps Platform as an infrastructure-as-code scanning tool. KICS automatically parses infrastructure-as-code files of any type to detect insecure configurations that could expose applications, data and services to attack. Users of Ansible, AWS CloudFormation, K8S or Terraform can … continue reading

SD Times news digest: Data safety in Google Play Console; Developer portal for Teams now available; Olive launches app store for healthcare

The Android development team announced that it will be incorporating the Data safety form in Google Play Console. Additional guidance is also available in the help center, developer guide, Play Academy Course, and more. The rollout will happen gradually over the next few weeks as access is slowly expanded to everyone. In order to submit … continue reading

The modern risks of open-source code

The amount of open-source code being used in modern applications has exploded. According to multiple surveys, a large majority of enterprises are reporting that open-source components and third-party libraries are being implanted into their applications, both internal and outward-facing. Developers acknowledge that utilizing open source allows them to both speed up software development and focus … continue reading

Checkmarx adds more management capabilities to address security at scale

Checkmarx has announced several new capabilities at this week’s RSA Conference in San Francisco in the hopes that it will enable security at scale. The latest version of the Checkmarx Software Exposure Platform adds more to the management and orchestration layer of the product. According to the company, the new release will offer a more … continue reading

SD Times news digest: AlphaGo Zero, GitHub’s 2017 State of the Octoverse, and Microsoft .NET Framework 4.7.1

DeepMind is introducing the latest version of its computer program AlphaGo. AlphaGo was the first artificial intelligence to defeat a world champion Go player, and the latest version, AlphaGo Zero, is a more powerful version of that, according to the team.  While AlphaGo learned by training on thousands of human games to learn to play Go, … continue reading

Gigster receives $20M in funding, Checkmarx’s DevSecOps platform, and Okta’s two-factor authentication — SD Times news digest: August 30, 2017

Gigster wants freelance programmers to earn a Silicon Valley salary, from the comfort of their homes. The four-year-old startup pairs companies looking for software developers in touch with freelance programmers all around the world. The startup just received $20 million in funding from investors like Salesforce’s CEO Marc Benioff, Redpoint Ventures, and basketball star Michael … continue reading

Security Playbook 2017: How to improve practices this year

From LinkedIn to Yahoo, companies fell into the hands of hackers and identity thieves in 2016. Each year, companies seem to make the same security resolutions, only to face roadblocks like skill shortages, time constraints and budget issues, which prevent them from implementing good security practices. Experts recommended companies consider the following trends and predictions … continue reading

Scala static analysis comes to Checkmarx

Checkmarx has expanded support for Scala into its static code-analysis tool. Checkmarx now supports 20 programming languages in its security-scanning product. Scala joins a host of other popular languages, such as C#, Java, PHP, Python, and even Perl. Checkmarx Static Code Analysis, as of today, can be run against a Scala codebase to find common … continue reading

Security testing should be on every DevOps team’s Black Friday checklist

The holidays are a time for shoppers to reap the benefit of online deals—and for hackers to leverage software vulnerabilities in retail systems and applications. In order to prepare for this year, IT monitoring experts suggested developers and operations teams incorporate adequate security testing as part of their holiday preparedness checklist. The biggest mistake organizations … continue reading

RSA conference highlights changing threats

Software developers still reeling from the constant security failures throughout the open-source stack in 2014 can take at least some comfort from the proceedings at this year’s RSA Conference in San Francisco. Most of the solutions, talks and products discussed at the show are not focused on the developer-induced security flaws that caused such a … continue reading

SD Times news digest: August 4, 2014—Game of Hacks, Mozilla’s database developer disclosure, and Microsoft’s lawsuit against Samsung

Game to sharpen developers’ security skills Application security firm Checkmarx has released a new game designed to help developers, coders and consumers improve their code security skills. Game of Hacks provides pieces of codes and challenges players to find the vulnerability as fast as possible. “We repeatedly hear security managers concerned about the secure coding … continue reading

DMCA.com Protection Status