by Azalio tdshpsk | May 14, 2024 | Security
The innovation hub of RSAC 2024, the RSAC Early Stage Expo was specifically designed to showcase emerging players in the information security industry. Among the 50 exhibitors crammed into the second floor booth space, seven VC-backed up-and-comers in application...
by Azalio tdshpsk | May 9, 2024 | Security
GitHub has introduced Artifact Attestations, a software signing and verification feature based on Sigstore that protects the integrity of software builds in GitHub Actions workflows. Artifiact Attestations is now available in a public beta.Announced May 2, Artifact...
by Azalio tdshpsk | Apr 18, 2024 | Security
Java services are the most-impacted by third-party vulnerabilities, according to the “State of DevSecOps 2024” report just released by cloud security provider Datadog.Released on April 17, the report found that 90% of Java services were susceptible to one or more...
by Azalio tdshpsk | Apr 17, 2024 | Security
As of the first quarter of 2024, 83% of developers were involved in devops-related activities such as performance monitoring, security testing, or CI/CD, according to the State of CI/CD Report 2024, published by the Continuous Delivery (CD) Foundation, a part of the...
by Azalio tdshpsk | Apr 12, 2024 | Security
The Rust language team has published a point release of Rust to fix a critical vulnerability to the standard library that could benefit an attacker when using Windows.Rust 1.77.2, published on April 9, includes a fix for CVE-2024-24576. Before this release, Rust’s...
by Azalio tdshpsk | Apr 9, 2024 | Security
Synopsys has introduced Black Duck Supply Chain Edition, a software composition analysis (SCA) package that helps organizations mitigate upstream risk in software supply chains, including from AI code.Announced April 9, Black Duck Supply Chain Edition is intended to...
