Microsoft has announced new ways for Windows developers to build applications. The company announced it is working on a unified app platform that will enable developers to leverage new and existing code. With Project Reunion, the company is working to unify access to Win32 and UWP APIs. “We will provide a common platform for new … continue reading
Making security easy for developers, in their preferred tools, while still generating reports for the CISO is a challenge many organizations face today, when the reality is that late-stage security approaches can’t plug vulnerabilities deep within applications. Yet putting the onus squarely on developers is a gamble, as many aren’t knowledgeable about certain kinds of … continue reading
erwin has annoucned the launch of a new cloud migration and data governance suite. The new suite, erwin Cloud Catalyst, helps organizations quickly and safely migrate their data from legacy, on-premise databases to the cloud and then govern those data sets throughout their lifecycle. erwin Cloud Catalyst is comprised of erwin Data Modeler (erwin DM), … continue reading
Sonatype, the company that scales DevOps through open source governance and software supply chain automation, and NeuVector, the leader in full lifecycle container security, today announced a new integration that provides a comprehensive view of all Kubernetes and Container open source risk in one place. The use of Kubernetes and Containers has skyrocketed in recent years. … continue reading
GraphQL database company Dgraph has announced the release of Slash GraphQL, a fully-managed GraphQL backend service for building GraphQL apps. According to the company, SlashGraphQL features custom logic and access to remote HTTP endpoints, the ability to run graph queries, integration with remote GraphQL servers, and more. “Dgraph is unique: it’s the only native GraphQL … continue reading
Sonatype: The company’s Nexus Platform automatically enforces open-source governance and controls risk across every phase of the SDLC. Fueled by Nexus Intelligence which includes in-depth security, license, and quality information on millions of open-source components across dozens of ecosystems, the platform precisely identifies open-source risk and provides expert remediation guidance, empowering developers to innovate faster. … continue reading
Brian Fox, CTO of Sonatype: Today, more than 1,200 companies rely on the Nexus platform to unite software developers, security professionals, and IT operations on the same team so they can continuously identify and remediate open-source risk, without slowing down innovation. When speed is critical, Nexus ensures that controls keep pace and that innovation prospers. … continue reading
Security has become ever more important in the development process, as vulnerabilities last year caused the 2nd, 3rd and 7th biggest breaches of all time measured by the number of people that were affected. This has exposed the industry’s need for more effective use of security tooling within software development as well as the need … continue reading
Security Compass introduced the new DevOps tool category Balanced Development Automation (BDA) in order to empower organizations to build secure digital products without compromising time to market. According to the company, development teams usually have to choose between “fast and risk” or “slow and safe.” BDA aims to improve processes that are manual, inconsistent, silo … continue reading
WhiteSource has announced it will now integrate with Microsoft Visual Studio Code Editor. According to the company, the integration gives Visual Studio Code developers visibility and security alerts on problematic open-source components while continuing to develop within their preferred development environment. “Integrating security testing pre-build allows issues to be detected earlier when they are easier … continue reading
Microsoft has released new data to show how the pandemic is accelerating the digital transformation of cybersecurity. According to the data, 58% of respondents report that they have increased their security budgets due to COVID-19, 82% plan on adding more security staff, and 81% feel pressure to lower security costs. “The role of security in … continue reading
In response to COVID-19, the Angular team announced that it will extend AngularJS LTS by 6 months until the 31st of December 2021. After the LTS ends, the AngularJS package will still be available on npm, bower, and CDNs. “With the release of version 10 of Angular we continue to move the platform forward with … continue reading
