Topic: whitesource

SD Times news digest: Jetpack WindowManager 1.0.0 now stable; Rust-Analyzer joins Rust organization; Whitesource announces SAST solution

The team at Google recently announced that Jetpack WindowManager 1.0.0 is now stable. WindowManager can be used to manage multi-window applications. Since its initial alpha release, the library has added WindowMetrics information and experimental support for activity embedding.  Jetpack WindowManager brings users the DisplayFeature interface as well as its FoldingFeature implementation. These work to provide … continue reading

Report: 1,300 malicious npm packages detected recently

The widely used JavaScript package manager npm is the latest technology to become closely examined by the security community after it was discovered that attackers were using it for malicious purposes.  Security company WhiteSource has detected over 1,300 malicious npm packages and has released a threat report detailing its findings. The malware detected was being … continue reading

SD Times news digest: WhiteSource releases Log4j remediation tool; Svelte 2022 updates; Clear acquires Whyline

WhiteSource, an open-source security and management company, today announced that a Log4j remediation preset is now included in both its commercial product and free GitHub developer tool. With this preset, enterprises can find and fix Log4j dependencies, both direct and indirect. WhiteSource is also bringing users a new online research center in order to provide … continue reading

SD Times news digest: Perforce updates Helix Sync, WhiteSource’s Priority Score technology, and IonQ now available through Qiskit

Perforce’s latest update to Helix Sync comes with a new drag-and-drop interface that enables non-coders to version digital assets.  “Even if your team is small, it doesn’t mean your challenges or files are. Helix Sync was built to help teams go faster,” said Gerhard Krüger, cloud architect and product manager at Perforce. “Securely versioning design … continue reading

The top open source licenses

Open-source security and license compliance management platform provider WhiteSource has released a complete guide for understanding and learning about open source licenses.  According to the guide, open-source licenses can be categorized under copyleft or permissive. Under a copyleft license, users who use a component of the open-source software must make their code available to others. … continue reading

WhiteSource acquires automated dependency update solution Renovate

Open-source security specialist WhiteSource has announced that it is acquiring Renovate. According to WhiteSource, Renovate is an open-source dependency update solution. “Renovate was developed because running user-facing applications with outdated dependencies is not a serious option for software projects today,” said Rhys Arkins, founder of Renovate. “It increases the likelihood of unfixed bugs and increases … continue reading

SD Times news digest: Progress announces new .NET capabilities, WhiteSource integrates with GitLab Core and Eclipse IDE, and PayPal leaves Libra

Progress announced a new release of Progress Telerik tools for .NET developers, adding full day-zero support for .NET Core 3.0 RC across the entire Telerik product line.  New capabilities and features include over 25 native UI components for Blazor; new components and accessibility improvements in ASP.NET Core and ASP.NET MVC; as well as a new … continue reading

SD Times news digest: WhiteSource’s integration with Bitbucket Server, Databricks Runtime for Machine Learning, and Android’s ML Kit updates

WhiteSource has announced a new integration with Atlassian Bitbucket Server that will provide developers with real-time alerts on open-source vulnerabilities within the Bitbucket UI. The integration will also automatically create fix pull requests, which will help speed up the remediation process. “The WhiteSource Bitbucket Server Integration is the latest step in our mission to help … continue reading

SD Times news digest: Applitools’s new SDKs, Android background execution, and WhiteSource new funding

Applitools is expanding its visual testing platform to Cypress and Storybook, two popular software development tools. The new SDKs are designed to run visual tests instantly when developers write code. This will enable developers to discover visual bugs as soon as they are introduced, allowing them to deliver higher-quality apps faster. “Finding and fixing bugs … continue reading

SD Times news digest: WhiteSource’s free vulnerability checker, Julia 1.0, and the Blockchain Learning Center

WhiteSource is making its Vulnerability Checker available for free for developers to detect if their solutions contain any of the 50 most critical open-source bugs out there today. The checker will enable users to import and scan any library as well as check if their projects are susceptible to the most recent and common bugs. … continue reading

SD Times news digest: WhiteSource’s software composition analysis, MapR’s AI training program, and MariaDB TX 3.0

WhiteSource has announced the launch of its software composition analysis tool, Effective Usage Analysis. The solution provides details on how software components are being used and highlights their impact on the application’s security. According to WhiteSource, the tool will reduce open-source vulnerability alerts by 70 percent.   “Our Effective Usage Analysis technology allows security and … continue reading

Visual Studio 2017 gets new integrations

Now that Visual Studio 2017 is officially generally available, companies are making sure they add to support to their existing solutions. JNBridge announced the release of JNBridgePro 8.1 to ensure compatibility with VS2017. JNBridge Pro connects any Java and .NET framework-based components so they work together, and delivers full access to .NET classes from Java … continue reading

DMCA.com Protection Status