Synopsys

AppSec Decoded: Application security orchestration and correlation | Synopsys

Jul 18, 2022 By Synopsys In Synopsys

In this edition of AppSec Decoded, recorded at RSA 2022 in San Francisco, cybersecurity experts Anita D’Amico, vice president of business development with Synopsys, and Taylor Armerding, security advocate with Synopsys, discuss the specific functions and benefits of ASOC tools.

View Video

Synopsys

Read more about AppSec Decoded: Application security orchestration and correlation | Synopsys

Top open source licenses and legal risk for developers

Jul 13, 2022 By Synopsys Editorial Team In Synopsys

Learn about the top open source licenses used by developers, including the 20 most popular open source licenses, and their legal risk categories. If you’re a software developer, you probably use open source components and libraries to build software. You know those components are governed by different open source licenses, but do you know all the license details? In particular, do you know the sometimes-convoluted licensing conditions that could pose compliance challenges?

Read Post

Synopsys

Read more about Top open source licenses and legal risk for developers

Discover application security training services | Synopsys

Jul 11, 2022 By Synopsys In Synopsys

Synopsys security training services allow organizations to build security champions within by delivering learning-centric solutions through on-demand, virtual, or in-person sessions. The curriculum covers a range of topics so you can tackle security from all angles and depths.

View Video

Synopsys

Read more about Discover application security training services | Synopsys

Build a holistic AppSec program

Jul 11, 2022 By Boris Cipot In Synopsys

What does it mean to build a holistic AppSec program? Learn what’s involved in a holistic approach and how to get started. Digital technology is the centerpiece of modern life today. All around us, technology is transforming business operations from end-to-end, from digital-first businesses to those simply updating existing processes. According to Gartner, 65% of executives report that they accelerated the pace of their digital business initiatives in 2021.

Read Post

Synopsys

Read more about Build a holistic AppSec program

The M&A Open Source Risk Number

Jul 8, 2022 By Phil Odence In Synopsys

Find out what our audit services team unearthed in the 2,400+ codebases we reviewed in 2021. Spoiler alert: In 2021, audits found open source in 100% of our customer engagements. Regular readers know that Synopsys recently published the seventh edition of the “Open Source Security and Risk Assessment” (OSSRA) report. We think it provides the best information available about usage of open source in the wild, and the frequency of open source risks.

Read Post

Synopsys

Read more about The M&A Open Source Risk Number

CyRC Vulnerability of the Month: curl

Jul 7, 2022 By Black Duck Security Advisory Team In Synopsys

The curl vulnerability shows how we produced timely information by combing through source code commits in open source projects.

Read Post

Synopsys

Read more about CyRC Vulnerability of the Month: curl

AppSec Decoded: Get the most out of your open source software | Synopsys

Jul 7, 2022 By Synopsys In Synopsys

Watch our latest edition of AppSec Decoded as Tim Mackey, principal security strategist at Synopsys Cybersecurity Research Center, and Taylor Armerding, security advocate at Synopsys Software Integrity Group, discuss the value of Black Duck® by Synopsys audit services in the M&A world, and ways to reap the benefits of your open source software without falling victim to the risks.

View Video

Synopsys

Read more about AppSec Decoded: Get the most out of your open source software | Synopsys

OWASP API Security Top 10: Security risks that should be on your radar

Jul 5, 2022 By Charlotte Freeman In Synopsys

The OWASP API Security Top 10 list highlights the most critical API security risks to web applications. Shifting security left means that API security can’t be left only to security teams. Developers need to be on top of potential vulnerabilities and remediate them as they develop. Building security into DevOps means we need to be thinking about how to deliver secure, high-quality code at velocity. Having some basic API security info under your belt will help.

Read Post

Synopsys

Read more about OWASP API Security Top 10: Security risks that should be on your radar

CyRC Vulnerability of the Month: Spring Framework

Jun 30, 2022 By Black Duck Security Advisory Team In Synopsys

Each month we highlight research from the Black Duck Security Research team in Belfast. This month’s vulnerability followed an unusual path through more than half a decade.

Read Post

Synopsys

Read more about CyRC Vulnerability of the Month: Spring Framework

AppSec Decoded: A holistic approach to your AppSec program | Synopsys

Jun 28, 2022 By Synopsys In Synopsys

Secure software requires more than just tools. Organizations need a security strategy, and plan, and skilled developers to minimize risks in their software. Learn how to build a holistic AppSec program that builds trust in your software.

View Video

Synopsys

Read more about AppSec Decoded: A holistic approach to your AppSec program | Synopsys

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Synopsys

AppSec Decoded: Application security orchestration and correlation | Synopsys

Top open source licenses and legal risk for developers

Discover application security training services | Synopsys

Build a holistic AppSec program

The M&A Open Source Risk Number

CyRC Vulnerability of the Month: curl

AppSec Decoded: Get the most out of your open source software | Synopsys

OWASP API Security Top 10: Security risks that should be on your radar

CyRC Vulnerability of the Month: Spring Framework

AppSec Decoded: A holistic approach to your AppSec program | Synopsys

Monthly Archive

Follow Us