Organizations everywhere use open source to expedite development, lower costs, and improve performance. Our annual State of the Software Supply Chain reports consistently reaffirm that open source comprises up to 90% of modern software solutions.

The post Dependency mapping: A beginner’s guide appeared first on Security Boulevard.

In the constantly shifting terrain of software supply chains, open source software (OSS) fulfills a dual mandate, propelling innovation forward and serving as the cornerstone of operational efficiency.

The post Open source risk management: Safeguarding software integrity appeared first on Security Boulevard.

In our fast-paced digital world, striving for excellence is an ongoing journey marked by the relentless pursuit of innovation, efficiency, and a focus on the essential contributors: the developers. Our 9th annual State of the Software Supply Chain report dives into our extensive studies and highlights how developer productivity is enhanced by superior tools and high-quality open source components. These elements are pivotal for enhancing security, product quality, and driving the creation of better software.

The post Introducing our 9th annual State of the Software Supply Chain report appeared first on Security Boulevard.

As the threat landscape continues to evolve, organizations face a formidable challenge: ensure the security of their software applications.

The post SAST vs. DAST: Enhancing application security appeared first on Security Boulevard.

As the threat landscape continues to evolve, organizations face a formidable challenge: ensure the security of their software applications.

The post SAST vs. DAST: Enhancing application security appeared first on Security Boulevard.

Over the past year, generative artificial intelligence (AI) rapidly emerged as a game-changing technology, similar to the disruptive force of cloud computing in the 2000s. As often happens during the initial phases of disruptive technologies, we marvel at the wide-ranging impact of its sudden popularity. Generative AI aligns with that narrative, igniting debates and fostering discussions within both the tech community and beyond.

The post Unlocking the power of generative AI in software development: Insights from Sonatype’s survey appeared first on Security Boulevard.

In the ever-evolving world of DevOps, two concepts, Shift Left and Secure Right, surfaced as catch-phrases that signal a shared desire to develop more secure and reliable software.

The post How to navigate DevOps principles: Analyzing Shift Left and Secure Right appeared first on Security Boulevard.

When you search for a dependable open source software (OSS) component to integrate into your software supply chain, evaluation of the component’s security emerges as a critical task. This involves not only examining the immediate functionalities of the component but also the overall state of the software project itself, including the maintainers and contributors that stand behind it and drive its development.

The post A guide for open source software (OSS) security appeared first on Security Boulevard.

In today’s software-driven world, it’s crucial to ensure the security of software during development. Yet many software development life cycle (SDLC) models lack specific emphasis on software security, requiring the addition of secure software development practices or software security frameworks alongside existing SDLC processes to ensure robust security measures.

The post Getting started with the Secure Software Development Framework (SSDF) appeared first on Security Boulevard.

Representatives of member states of the European Union (EU) reached a common agreement yesterday regarding the proposed Cyber Resilience Act (CRA).

The post Cyber Resilience Act: The Future of Software in the European Union appeared first on Security Boulevard.