Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Open Source

jit

Announcing Opengrep: Continuing the Open-Source Mission for Static Code Analysis

Jan 23, 2025 By Aviram Shmueli In Jit
At Jit, we are proud to announce our participation in a consortium of companies that have come together to launch Opengrep, a continuation of Semgrep’s groundbreaking OSS. Opengrep is born out of our shared commitment to keeping static code analysis open, accessible, and community-driven.
Read Post
aikido

Launching Opengrep | Why we forked Semgrep

Jan 23, 2025 By Mackenzie Jackson In Aikido
Last month, Semgrep announced major changes to its OSS project—strategically timed for a Friday, of course ;) Since 2017, Semgrep has been a cornerstone of the open-source security community, offering a code analysis engine and rule repository alongside its SaaS product. But their recent moves raise the question: what does “open” really mean?
Read Post
netacea

How Open-Source Security Frameworks Drive Better Cyber Defense

Jan 16, 2025 By Alex McConnell In Netacea
Open-source security frameworks are an essential tool in the cybersecurity arsenal. These frameworks provide the foundation for building secure systems and adhering to key industry standards. Yet, despite their importance, many practitioners and organizations fail to tap into the full potential of these frameworks. Exploring them in depth can unlock significant value for businesses, developers, and security teams.
Read Post

Microsoft and Black Duck DevOps Partnership: Build Secure, High-Quality Software Faster | Black Duck

Jan 15, 2025 By Synopsys In Synopsys
Building secure, high-quality software is more challenging than ever. The bar is set high for organizations to release new features and functions without compromising the quality or security in the applications they deploy. Organizations are rapidly adopting DevOps tools and methodologies to keep up-with the demands of accelerated software delivery. They are also implementing application security testing earlier in their development workflow to develop and deploy quality code.
View Video

Black Duck SCA & Coverity Static Analysis (SAST) Integrations with Amazon AWS CI Tools | Black Duck

Jan 13, 2025 By Synopsys In Synopsys
DevOps teams are rearchitecting their applications from monoliths to microservices, fueled by containerization and CI/CD. As application development moves to the cloud, security testing tools must follow. Application security testing solutions by Black Duck support the CI/CD tools you already use, including AWS Developer Tools. Coverity static analysis identifies security and quality issues in code as it is being built. To invoke a Coverity scan in AWS CodeBuild, simply add the steps to your application’s build specifications.
View Video
securitysenses

Integrating Cybersecurity Functions into Dashboards: Examples with Open Source Frameworks

Jan 13, 2025 By SecuritySenses In SecuritySenses
Cybersecurity has become a non-negotiable aspect of modern technology, with businesses and individuals alike seeking smarter ways to protect their digital assets. Among the most effective solutions are interactive dashboards that provide real-time insights and control over security measures. Leveraging vue dashboard framework like AdminForth, developers can seamlessly integrate security features to create custom, open-source dashboards that enhance visibility and control. These tools offer an accessible and cost-effective way to streamline cybersecurity operations.
Read Post

Build an SBOM in under 30 seconds with Black Duck SCA | Black Duck

Jan 10, 2025 By Synopsys In Synopsys
In this video, we show you how easy it is to create an open source Software Bill of Materials (SBOMs) using Black Duck SCA. Join us as we demonstrate how to effortlessly generate an SBOM in under 30 seconds, empowering enterprise teams to prioritize SBOM creation. Key Steps.
View Video

Understanding OSS security, quality, and license risks in Black Duck SCA | Black Duck

Jan 9, 2025 By Synopsys In Synopsys
In this video, we unveil the three fundamental views of Software Composition Analysis (SCA) risk within Black Duck: Security, License, and Operational. Join us as we navigate the landscape of open source components to identify vulnerabilities, license obligations, and component health.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.