open source
Dependency mapping: A beginner’s guide
Organizations everywhere use open source to expedite development, lower costs, and improve performance. Our annual State of the Software Supply Chain reports consistently reaffirm that open source comprises up to 90% of ...
Open Source DAST, Browser Security and EDR: Security Tools Anyone Can Afford
It’s worthwhile to familiarize yourself with open source alternatives to popular commercial cybersecurity offerings ...
Cybersecurity and Open Source Experts Up In Arms About the CRA
Provisions in the EU's proposed Cyber Resilience Act drew more fire from high-profile cybersecurity and open source technology advocates ...
Open-Source Software: No Free Lunch
By Jason Turim, CTO and Co-Founder of OpsCanvas Open-source software offerings and the communities that have evolved in support of them ... The post Open-Source Software: No Free Lunch appeared first on ...
Heads Up: Patch for ‘Worst Curl Security Flaw’ Coming This Week
Developers who use the popular curl open-source data transfer tool will be able to patch two vulnerabilities in the software on October 11, one of which the lead developer called the “worst ...
Your Polaris Questions: Open Source Configuration Validation for K8s
There are many ways to configure Kubernetes and the workloads that it runs, and unfortunately, many of them are dangerous. It's far too easy to introduce problems related to security, efficiency, or ...
Fake Signal and Telegram Apps in the Google Play Store
Google removed fake Signal and Telegram apps from its Play store. An app with the name Signal Plus Messenger was available on Play for nine months and had been downloaded from Play ...
Pluto Finds Deprecated Kubernetes API Versions — 3 Questions from Users
Pluto is an open source utility that Fairwinds built to help users find deprecated Kubernetes API versions in their code repositories and Helm releases. As many Kubernetes users know, Kubernetes APIs are ...
A guide for open source software (OSS) security
When you search for a dependable open source software (OSS) component to integrate into your software supply chain, evaluation of the component’s security emerges as a critical task. This involves not only ...
Announcing Nosey Parker Update to v0.14.0
Last week we published a new release of Nosey Parker, our fast and low-noise secrets detector. The v0.14.0 release adds significant features that make it easier for a human to review findings, ...
