Secure software supply chain solution provider Chainguard Inc. today announced Chainguard Libraries, a new product line that offers secure language libraries for Java built directly from source in ...

With open source code making up about 80% of the average application, application security professionals are urging developers to create pipelines that put software supply chain security front and ...

Varun Badhwar is CEO & Co-Founder at Endor Labs. Previously, he built Prisma Cloud for Palo Alto Networks following the RedLock acquisition. Packages arriving late, stores out of stock or overstocked, ...

A new class of supply chain attacks named 'slopsquatting' has emerged from the increased use of generative AI tools for coding and the model's tendency to "hallucinate" non-existent package names. The ...

A panel discussion at DEF CON 33 last week, titled “Adversaries at war: Tactics, technologies, and lessons from modern battlefields”, offered several thought-provoking points, as well as a clear ...

In a bid to reduce software supply chain risks in the open source software ecosystem, Google launched a free API service providing dependency data and security-related information on over 5 million ...

Debian-based Linux distributions, such as Ubuntu, Linux Mint, and Debian itself, rely on robust package management systems to install, update, and remove software efficiently. One of the most critical ...

Application dependencies refer to the relationships between software components that rely on one another to function properly. In simpler terms, imagine a software application as a well-oiled machine, ...