The rapid adoption of the cloud has led companies to increasingly secure open-source components in modern software. The newly released 12th Building Security In Maturity Model (BSIMM12) report found a 61% increase in software security groups’ identification and management of open source over the past two years. The report was created by Synopsys, a company … continue reading
GitLab announced the release of GitLab 14.3 with project-level security scan execution policies, next generation SAST to reduce Ruby false positives, group level permissions for protected environments and group access for the GitLab Kubernetes Agent. The project-level DAST and secret detection scan execution policies allow users to require DAST and secret detection scans to run … continue reading
New data shows a direct correlation between resignations, departing employees, and data exposure events. This is of particular interest to organizations currently as companies experience what’s been called “the Great Resignation.” As employees leave their companies, they oftentimes — intentionally or otherwise — take valuable source code, patent applications, and customer lists with them. Code42, … continue reading
Microsoft announced the first preview release of Package Source Mapping with Visual Studio 2022 preview 4. Package Source Mapping gives users fine-grained control of where their packages come from by mapping every package in their solution to target a package source. Package Source Mappings will apply to all project types – including .NET Framework – … continue reading
Confluent announced Stream Governance to address unsolved data privacy and regulatory issues surrounding real-time, event-driven data. Distributed teams will now have quick and easy access to the data that’s critical to developing more real-time applications and business operations all while maintaining security and privacy. “With the sharp rise of real-time data, the need for governance … continue reading
WALNUT CREEK, Calif., September 14, 2021 /PRNewswire/ — Exadel (exadel.com), a software engineering company delivering digital platforms and products, today announced it has acquired Coppei (https://coppeipartners.com/) a Seattle-based digital business strategy and technology consultancy serving global Fortune 500 clients. Coppei will continue to operate as an independent brand. The complementary services of Coppei’s digital strategy … continue reading
The latest edition of the OWASP Top 10 showed that all of the highest-priority vulnerabilities since 2017 have shifted and new ones have been introduced. Broken Access Control has dethroned Injection as the top vulnerability, whereas it previously held fifth place. The 34 Common Weakness Enumerations (CWEs) mapped to Broken Access Control had more occurrences … continue reading
The latest release of Tableau is now available. Tableau 2021.3 includes better ways to prepare and manage data, explore data through Tableau Server or Online site before sharing with others, and new custom sample workbooks. Improvements to Tableau Prep include linked tasks, which will allow users to automate multiple flow jobs and ensure they happen … continue reading
JetBrains announced a new dedicated IDE for Data Science under the Early-Access Program. DataSpell offers a productive development environment for data science professionals who are actively involved in exploratory data analysis and prototyping machine learning models. The IDE offers native support for Jupyter notebooks and provides an enhanced experience over traditional Jupyter notebooks. It also … continue reading
Tableau unveiled its new data and analytics platform capabilities that include new capabilities to make data challenges easier to manage and to ensure that analytics scales with enterprise demand. Tableau Prep now makes it easier for customers to reduce loads and costs of server resources automatically, and new capabilities help by alerting users of potential … continue reading
The DataOps role is unique in the space of data analytics, with its goal to enable data engineers, scientists, analysts and governance to own the pipelines that run the assembly process. Essentially, DataOps engineers work on, but not in, these pipelines, according to a DataKitchen webinar titled “A Day in the Life of a DataOps … continue reading
Apollo GraphQL said it will use the funding to create pioneering open-source graph technology that makes app development faster and more accessible for everyone. The graph has gained a lot of popularity among developers with 86% of JavaScript developers ranking GraphQL as the top technology they want to learn. The company also plans to expand … continue reading
