Topic: security

SD Times news digest: The Hacker Gamers by Veracode, GrammaTech Shift Left Academy, and Talend to be acquired by Thoma Bravo

Veracode has introduced a secure coding competition, The Hacker Games, which aims to challenge university students to hack and patch real-life apps online to win individual prizes, plus $15,000 in charitable donations for the top universities. “Training around secure coding is almost absent at the university level. We’ve launched The Veracode Hacker Games to help … continue reading

SD Times news digest: .NET Core 2.1 to end support August 21, 2021, Intel joins the DARPA DPRIVE program, and GrammaTech and GitLab team up on SAST

Microsoft announced that .NET Core 2.1 will reach end of support on August 21st, 2021, after which there will be no more updates and security fixes. The .NET Core cross platform and Mobile development workloads won’t be changed and the .NET Core 2.1 component remains as required because these workloads can’t be used without .NET … continue reading

With OSS, know when you’re vulnerable

Instead of building all software “from scratch” today, developers use open source to their advantage when needing to provide common or repetitive elements. Doing so primarily limits the use of the homegrown code they develop for proprietary features and functionality, while also being the adhesive that binds everything together. Consequently, developers spend much of their … continue reading

Checkmarx debuts new Keeping Infrastructure as Code Secure solution

In an effort to better secure cloud-native apps, software security company Checkmarx has launched a new open-source static analysis solution. The new Keeping Infrastructure as Code Secure (KICS) solution enables developers to write secure infrastructure as code (IaC) by automatically detecting issues from the start. According to the company, as organizations move to the cloud … continue reading

Google to fund two full-time Linux kernel security developers

Google and the Linux Foundation have announced plans to maintain and improve Linux’s long-term security. As part of the plan, the organizations will prioritize funds to underwrite long-time Linux kernel maintainers Gustavo Silva and Nathan Chancellor as full-time developers focused on Linux kernel security development.  This decision follows a survey by the Linux Foundation’s Open … continue reading

SD Times news digest: Sauce Labs’ new shift-left capabilities, Nintex Workflow Cloud launched, CircleCI privacy enhancements

Sauce Labs announced new shift-left capabilities such as new end-to-end visual testing as well as Sauce Testrunner, which supports a host of developer-preferred test frameworks such as Cypress, Playwright, and TestCafe.  “Successful testing in the DevOps era is about giving developers the optionality and flexibility to work within the frameworks with which they’re most comfortable, … continue reading

Google to address memory-safety issues in open source

Google is tackling one of the most problematic security issues in open source: memory-safety vulnerabilities. According to a recent report from Microsoft’s Security Response Center, a majority of vulnerabilities are due to memory-safety issues, and Google believes almost half of these issues could be prevented with a memory-safety language.  “Software written in unsafe languages often … continue reading

SD Times news digest: JetBrains 2020 annual report, Microsoft’s autofill solution for passwords, IBM and Palantir team up on cloud and AI

The fifth JetBrains annual report showed that there are 10.1 million JetBrains users around the world and that the company’s revenue grew by 11% in 2020 (with the greatest increase in China at 85%). JetBrains has created an extended family of integrated development environments (IDE) for various programming languages and designed Kotlin, the officially preferred … continue reading

SD Times news digest: Visual Studio Code 1.53 released, Mixed Reality feature tool for Unity, GitHub Marketplace updates

Visual Studio Code 1.53 includes JavaScript debugging with support for conditional exception breakpoints and Node.js worker_threads, as well as Notebook UX updates, a markdown preview image auto update, and more.  Users can now start multiple concurrent debug sessions and each subsequent debug session will have a number at the end of the name so it … continue reading

Atlassian unveils cloud enterprise plan

Atlassian announced the general availability of Cloud Enterprise, a new cloud offering that features enterprise-grade scalability, security, and governance controls for Jira Software, Confluence, and Jira Service Management.  Users can activate unlimited instances so that teams can tailor instances to their needs and they can also access Atlassian cloud products on any device. “This means … continue reading

The modern risks of open-source code

The amount of open-source code being used in modern applications has exploded. According to multiple surveys, a large majority of enterprises are reporting that open-source components and third-party libraries are being implanted into their applications, both internal and outward-facing. Developers acknowledge that utilizing open source allows them to both speed up software development and focus … continue reading

SD Times news digest: Microsoft Azure Boards, Neo4j Aura Enterprise announced, and Cloud Security Alliance’s Cloud Controls Matrix v4

Microsoft is introducing Azure Boards to help users track their work with “drag-and-drop” capabilities right in the browser. Azure Boards enables developers to filter to individual users, export data into calendars, plan sprints and query for their work items. “Whether you’re a scrum master or someone who’s still brand new to Agile, you’ll benefit from … continue reading

Ad will close in seconds
Continue to site
HTML Snippets Powered By : XYZScripts.com

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!