Synopsys

Building security into existing source code management workflows

May 17, 2022 By James Rabon In Synopsys

Shifting visibility downstream in the SDLC with an AppSec tool like Code Dx enables companies to build high-quality software, faster. A key component of DevOps is the ability to support software branching and merging. Software branching enables software development teams to develop multiple parts of software at the same time, to have multiple releases for various platforms, and to help manage larger software teams with many different roles and responsibilities.

Read Post

Synopsys

Read more about Building security into existing source code management workflows

Software Risk is the Ultimate Business Risk | Synopsys

May 17, 2022 By Synopsys In Synopsys

Manage software risks across your organization by building secure, high-quality, and compliant software while maximizing velocity and controlling costs with Synopsys’s application security portfolio.

View Video

Synopsys

Read more about Software Risk is the Ultimate Business Risk | Synopsys

Two-factor authentication misconfiguration bypass

May 12, 2022 By Chaitanya Purandare In Synopsys

In this post we discuss how an account with two-factor authentication could be bypassed if the password were breached.

Read Post

Synopsys

Read more about Two-factor authentication misconfiguration bypass

Black Duck Open Source Audits: Working through licensing issues like a pro

May 11, 2022 By Phil Odence In Synopsys

It’s critical to have the right people and approach when it comes to understanding and resolving licensing issues in open source audits. Many of our regular Black Duck Audit customers have well-honed processes that kick in after we deliver reports. We’ve gleaned some ideas and approaches from working with these clients and the biggest pro tip? You need a pro, i.e., make sure you have an open source-savvy attorney involved.

Read Post

Synopsys

Read more about Black Duck Open Source Audits: Working through licensing issues like a pro

CyRC Vulnerability Advisory: Reflected cross-site scripting in Black Duck Hub

May 9, 2022 By Ben Ronallo In Synopsys

CVE-2022-30278 is a reflected cross-site scripting (XSS) vulnerability in Black Duck Hub’s embedded MadCap Flare documentation files.

Read Post

Synopsys

Read more about CyRC Vulnerability Advisory: Reflected cross-site scripting in Black Duck Hub

AppSec Decoded: 2022 Open Source Security and Risk Analysis (OSSRA) trends| Synopsys

May 3, 2022 By Synopsys In Synopsys

Watch the 2022 OSSRA report to seek the most popular open source trends and vulnerabilities, and a range of actionable solutions that organizations can take to improve their open source management.

View Video

Synopsys

Security

Read more about AppSec Decoded: 2022 Open Source Security and Risk Analysis (OSSRA) trends| Synopsys

AppSec Decoded: Managing supply chain risks | Synopsys

May 3, 2022 By Synopsys In Synopsys

In this episode of AppSec Decoded, Mike McGuire, security solutions manager at Synopsys Software Integrity Group, and Taylor Armerding, security advocate at Synopsys Software Integrity Group, discuss why supply chain attacks have become low-hanging fruit for cybercriminals and what organizations need to understand about their supply chain to avoid becoming the next target.

View Video

Synopsys

Security

Read more about AppSec Decoded: Managing supply chain risks | Synopsys

Synopsys to expand portfolio, SaaS offerings with WhiteHat Security acquisition

Apr 27, 2022 By Jason Schmitt In Synopsys

Synopsys has signed a definitive agreement to acquire WhiteHat Security, a market-segment leading provider of dynamic application security testing (DAST) solutions.

Read Post

Synopsys

Read more about Synopsys to expand portfolio, SaaS offerings with WhiteHat Security acquisition

CVE-2022-24814- Stored XSS In Directus | Synopsys

Apr 22, 2022 By Synopsys In Synopsys

Synopsys CyRC has identified a new vulnerability, CVE 2022-21484. Watch the video to understand how an attacker could exploit the Directus vulnerability and proper remediation efforts.

View Video

Synopsys

Read more about CVE-2022-24814- Stored XSS In Directus | Synopsys

GartnerMQ Leader Again 2022

Apr 21, 2022 By Synopsys In Synopsys

Synopsys is named a Leader in the 2022 Gartner Magic Quadrant for Application Security Testing for the 6th year in a row! Learn more: Synopsys.com/leader

View Video

Synopsys

Security

Read more about GartnerMQ Leader Again 2022

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Synopsys

Building security into existing source code management workflows

Software Risk is the Ultimate Business Risk | Synopsys

Two-factor authentication misconfiguration bypass

Black Duck Open Source Audits: Working through licensing issues like a pro

CyRC Vulnerability Advisory: Reflected cross-site scripting in Black Duck Hub

AppSec Decoded: 2022 Open Source Security and Risk Analysis (OSSRA) trends| Synopsys

AppSec Decoded: Managing supply chain risks | Synopsys

Synopsys to expand portfolio, SaaS offerings with WhiteHat Security acquisition

CVE-2022-24814- Stored XSS In Directus | Synopsys

GartnerMQ Leader Again 2022

Monthly Archive

Follow Us