With DroidGPT, Endor Labs applies generative AI to software development to ensure open-source packages are current and secure.
Search Results: open-source software (168)
In Cybersecurity Minute, Ep. 31, Chris Hughes says it’s clear that the Senate’s Securing Open Source Software Act emphasizes how critical open-source software is to national security and society.
In this Cybersecurity Minute, Chris talks about efforts being made to improve open-source software security by OpenSSF.
Software built nowadays leverages open-source software, which alleviates the need to rebuild something that already exists.
An exploration of the NSA’s software supply chain security guidance and how it can help organizations fortify overall cybersecurity.
Snyk’s report on AI-generated code security shows how developers, lured by accelerated production, are unwittingly overlooking risks.
With the release of its first large language model, Stability AI serves as an open-source alternative to OpenAI’s ChatGPT.
Discover why closing the loop by fixing code is essential to effectively combat the security risk of hard-coded secrets.
Snyk and GitGuardian, two prominent security tools providers, collaborate to tackle cloud-native security challenges and bolster cybersecurity measures.
Cybersecurity vendor GitGuardian launches a new module aiming to draw software supply chain intruders in, then capture their information.
The Biden-Harris administration unveiled an updated National Cybersecurity Strategy to standardize cybersecurity practices across agencies and encourage market accountability.
Endor Labs released a report that identifies the top 10 open source software risks, including known vulnerabilities, compromised legitimate packages, untracked dependencies, and more. Chis Hughes explains.
AI and automation can protect against financial and reputational losses from data theft and ransomware in financial software, writes Bill Doerrfeld.
Chris Hughes reveals alarming findings in the 2023 Open Source security and risk analysis report by Synopsys.
ChatGPT’s ability to produce code has been overlooked in the media frenzy, but generative AI can make developers more productive, and focused, according to Bill Doerrfeld.
John Siefert, Chris Hughes, Frank Domizio, and Rob Wood explain why applying software composition analysis (SCA) early in the development cycle makes it easier to address security issues when they arise.
Software composition analysis tools are valuable assets to secure systems and protect organizations, says Frank Domizio, but they will also directly benefit software developers.
How MongoDB, UiPath, Couchbase, and Cloudflare beat expectations and raised their outlook amid challenging macroeconomic conditions.
Bill summarizes the main points from Endor’s 2022 State of Dependency Management study to better understand how cybersecurity professionals should respond to OSS vulnerabilities.
Bill Doerrfeld summarizes the key points from Sonatype’s “The State of the Software Supply Chain” report to help IT technology divisions better understand how to address open-source security today.