RALEIGH, NC – July 26, 2023 – Allstacks, a leader in value stream intelligence, today announced that it has successfully renewed a Type 2 Service Organization Control (SOC 2) examination conducted by an independent auditor. The audit demonstrated that the Allstacks platform meets specific criteria for guarding the data security of its clients and their customers. SOC … continue reading
JFrog has announced the introduction of JFrog Curation, an automated DevSecOps solution designed to thoroughly inspect and block contaminated open-source or third-party software packages and their respective dependencies before they enter a company’s software development environment. JFrog Curation, which is integrated with JFrog Artifactory, uses binary metadata for the identification of high-risk packages with high-severity … continue reading
Google is always working to improve privacy and transparency in Google Play so that users can be trustful of the place where they download all their Android apps. To that end, the company has just announced a number of updates, such as expanded developer verification requirements and new policies for developers wishing to offer blockchain-based … continue reading
With a 742% average annual increase in software supply chain attacks reported by Sonatype, application security has become a top concern for businesses. Today Vaadin is excited to announce AppSec Kit, a new Acceleration Kit designed to enhance the security of your web applications built with Vaadin. AppSec Kit is currently available for Vaadin 7 and Vaadin … continue reading
GitHub Enterprise Server (GHES) 3.9 is now available with more features that can help organizations collaborate better, gain better observability, and have faster workflows. Among its highlights are a new time-based view in GitHub Projects, as well as the ability to standardize issues with tools such as issue forms. GitHub Projects has been enhanced with … continue reading
The Open Worldwide Application Security Project (OWASP) announced the launch of OWASP CycloneDX version 1.5, a new standard in the Bill of Materials (BOM) domain that specifically targets issues of transparency and compliance within the software industry. CycloneDX v1.5 goes beyond established standards, by introducing ML transparency (ML-BOM), Formulation (MBOM), and enhanced support for SBOM … continue reading
BOSTON – June 27, 2023 – Mendix, a Siemens business and global leader in modern enterprise application development, today announced the general availability of Mendix 10, the most powerful release of the industry-leading low-code platform. Mendix 10 introduces a host of innovations that empower organizations to meet the unprecedented demand for software by enabling shifts in enterprise-wide digital solution delivery. Organizations across all … continue reading
The confidential cloud computing company Fortanix unveiled Fortanix Confidential Data Search. This high-performance solution allows for secure, scalable searches within encrypted databases holding sensitive data, without jeopardizing the data’s security or violating privacy regulations. According to the company, presently, the market predominantly offers encrypted data search solutions that rely on intricate and costly cryptographic methods, … continue reading
The newly announced Security in Jira for Jira Software Cloud is aimed at helping organizations prioritize security more effectively by providing software teams with visibility into the security issues that need to be resolved. In collaboration with partners like Snyk, Mend, Lacework, Stackhawk, and JFrog, Atlassian is equipping teams with the means to tackle security … continue reading
Wind River unveiled its latest offering, the Wind River Studio Linux Security Scanning Service. This service, designed specifically for embedded Linux development, offers high-quality scanning capabilities to detect and identify Common Vulnerabilities and Exposures (CVEs) and is currently accessible to users free of charge. The new service goes beyond detection and also provides information on … continue reading
OpenAI announced that it is launching the Cybersecurity Grant Program, which is a $1 million initiative to boost and quantify AI-powered cybersecurity capabilities and to foster high-level AI and cybersecurity discourse. The company aims to collaborate with security professionals worldwide in order to shift the balance of power in cybersecurity. Their strategy involves leveraging AI … continue reading
Red Hat Service Interconnect, which can simplify application connectivity and security across platforms, clusters, and clouds, is now generally available after being announced at Red Hat Summit. The solution is based on the open-source project Skupper.io, which enables secure communication across Kubernetes clusters with no VPNs or special firewall rules. According to Red Hat, application … continue reading
