Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

Static Application Security Testing (SAST): What You Need to Know

Jan 24, 2025 By Jit In Jit

Modern software applications operate within increasingly complex ecosystems, spanning multiple layers of the stack—from the user interface and application logic to APIs, databases, and third-party dependencies. Each layer introduces unique vulnerabilities, often requiring specialized domain expertise to identify and mitigate.

Read Post

Jit

Read more about Static Application Security Testing (SAST): What You Need to Know

Launching Opengrep | Why we forked Semgrep

Jan 23, 2025 By Mackenzie Jackson In Aikido

Last month, Semgrep announced major changes to its OSS project—strategically timed for a Friday, of course ;) Since 2017, Semgrep has been a cornerstone of the open-source security community, offering a code analysis engine and rule repository alongside its SaaS product. But their recent moves raise the question: what does “open” really mean?

Read Post

Aikido

Read more about Launching Opengrep | Why we forked Semgrep

Quantum Insights: Head of Quantum Research Reza Nejabati on quantum's potential

Jan 23, 2025 By Panoptica In Panoptica

Outshift by Cisco’s Head of Quantum Research Reza Nejabati unlocks what we can expect from quantum computing in the next 5 to 10 years from rapid medical discoveries to giant leaps in AI. Outshift is Cisco’s incubation engine, innovating what's next and new for Cisco products and sharing our expertise on emerging technologies. Discover the latest on cloud native applications, cloud application security, generative AI, quantum networking and security, future-forward tech research, our latest open source projects and more.

View Video

Panoptica

Read more about Quantum Insights: Head of Quantum Research Reza Nejabati on quantum's potential

Quantum Insights: Hassan Shapourian on realizing quantum's full potential with Cisco Quantum Labs

Jan 23, 2025 By Panoptica In Panoptica

Outshift by Cisco’s Hassan Shapourian, Software Engineering Technical Leader, shares how we’re pioneering this emerging technology to include major hurdles, how we’re making it happen, and the full potential of quantum computing. Outshift is Cisco’s incubation engine, innovating what's next and new for Cisco products and sharing our expertise on emerging technologies. Discover the latest on cloud native applications, cloud application security, generative AI, quantum networking and security, future-forward tech research, our latest open source projects and more.

View Video

Panoptica

Read more about Quantum Insights: Hassan Shapourian on realizing quantum's full potential with Cisco Quantum Labs

Quantum Insights: Outshift's Head of Research on quantum's full potential with Cisco Quantum Labs

Jan 23, 2025 By Panoptica In Panoptica

Outshift by Cisco’s Head of Research Ramana Kompella shares how we are creating scalable quantum networks and encryption solutions, such as Quantum Random Number Generators, to ensure robust security against future threats. Outshift is Cisco’s incubation engine, innovating what's next and new for Cisco products and sharing our expertise on emerging technologies. Discover the latest on cloud native applications, cloud application security, generative AI, quantum networking and security, future-forward tech research, our latest open source projects and more.

View Video

Panoptica

Read more about Quantum Insights: Outshift's Head of Research on quantum's full potential with Cisco Quantum Labs

Find secure, compliant, and high-quality OSS components with Black Duck SCA | Black Duck

Jan 22, 2025 By Synopsys In Synopsys

In this video, we take you on a tour through Black Duck’s SCA tool to show you how you can find and select the most high-quality open-source components for your applications.

View Video

Synopsys

Read more about Find secure, compliant, and high-quality OSS components with Black Duck SCA | Black Duck

Generating build-time SBOMs with CycloneDX and Kondukto

Jan 20, 2025 By Luis Pereira In Kondukto

As applications grow more complex, they incorporate many third-party libraries and open-source components, often making it challenging to fully understand and manage the security risks they introduce. To address these concerns, application security engineers are increasingly turning to tools that provide greater visibility and control over software components.

Read Post

Kondukto

Read more about Generating build-time SBOMs with CycloneDX and Kondukto

Microsoft and Black Duck DevOps Partnership: Build Secure, High-Quality Software Faster | Black Duck

Jan 15, 2025 By Synopsys In Synopsys

Building secure, high-quality software is more challenging than ever. The bar is set high for organizations to release new features and functions without compromising the quality or security in the applications they deploy. Organizations are rapidly adopting DevOps tools and methodologies to keep up-with the demands of accelerated software delivery. They are also implementing application security testing earlier in their development workflow to develop and deploy quality code.

View Video

Synopsys

Read more about Microsoft and Black Duck DevOps Partnership: Build Secure, High-Quality Software Faster | Black Duck

Your Client Requires NIS2 Vulnerability Patching. Now What?

Jan 14, 2025 By Mackenzie Jackson In Aikido

TL;DR: The new EU cybersecurity directive, NIS2, is already reshaping how software suppliers do business through stricter vulnerability management requirements in procurement contracts. This shift is gaining momentum, and more companies will need to adapt. Aikido helps automate compliance reporting and vulnerability tracking to meet these new demands. Start your free compliance journey here, or read on to understand what this means for your business.

Read Post