Open source code for commercial software is ubiquitous, but so is the risk
As the SolarWinds and Log4j hacks show, vulnerabilities in open source software used in application development can open doors for ...
Read moreTag: source
Decipher Podcast: Source Code 11/18
Podcast Supply Chain Security Decipher Podcast: Dan Lorenc Dan Lorenc, CEO and founder of Chainguard, joins Dennis Fisher to talk ...
Read more
Google’s GUAC Open Source Tool Centralizes Software Security Metadata
Google today introduced Graph for Understanding Artifact Composition (GUAC), an open source tool for centralizing build, security, and dependency metadata. ...
Read more
Google Launches Bug Bounty Program For Open Source Projects
Google has launched a program aimed at rewarding the discoveries of vulnerabilities found in its open source software projects, such ...
Read moreAcademics Devise Open Source Tool For Hunting Node.js Security Flaws
A group of academic researchers have designed an open source Node.js bug hunting tool that has already identified 180 security ...
Read more
Attacker Stole Portion of LastPass Source Code
LastPass, the password management company whose tools are widely used in the enterprise, said that an attacker was able to ...
Read more
LastPass Developer Account Hacked to Steal the Company’s Source Code
LastPass, a freemium password management company was hacked which allows an unauthorized party gain access and steal portions of source ...
Read more
After Log4j, Efforts to ‘Uplift’ Open Source Ecosystem Continue
“We’re skiing on top of a pretty good avalanche of support... that is looking at how we help uplift the ...
Read moreDecipher Podcast: Source Code 7/22
Podcast Source Code Decipher Podcast: Source Code 7/8 Welcome back to this week’s Source Code podcast by Decipher, where we ...
Read moreDecipher Podcast: Source Code 7/15
Podcast Source Code Decipher Podcast: Source Code 7/8 Welcome back to this week’s Source Code podcast by Decipher, where we ...
Read more