Where the world meets DevOps Thu, 19 Dec 2024 18:14:46 +0000 en-US hourly 1 https://devops.com/wp-content/uploads/2021/10/android-chrome-256x256-1-130x130.png 32 32 144979424 https://devops.com/runsafe-security-extends-platform-reach-to-build-more-accurate-sboms/ Thu, 19 Dec 2024 18:14:46 +0000 https://devops.com/?p=174791 RunSafe Security this week added an ability to generate a software bill of materials (SBOM) based on the code actually included in an application before it is deployed in a production environment.]]> 174791 https://devops.com/survey-surfaces-software-supply-chain-security-gains/ Thu, 07 Nov 2024 13:00:27 +0000 https://devops.com/?p=174084 A survey of 106 leaders and practitioners involved in software supply chain security finds more than three-quarters of respondents (76%) work for organizations that have made software supply chain security a significant or top (24%) priority.]]> 174084 https://devops.com/survey-surfaces-lots-of-software-supply-chain-insecurity/ Wed, 03 Jul 2024 15:45:41 +0000 https://devops.com/?p=171481 A global survey of 900 application security professionals finds nearly two-thirds work for organizations that have had their software supply chains compromised in the past two years.]]> 171481 https://devops.com/webinars/sboms-are-da-bomb-for-identifying-threats-in-your-software/ Tue, 05 Dec 2023 18:00:00 +0000 https://devops.com/?post_type=tribe_events&p=166169 Did your software team scramble when the Log4j vulnerability became public? Was it easy for your team to identify the different versions used in all your software projects? Are you ready for when the next big open source vulnerability hits? Software bills of materials (SBOMs) are effective at helping you identify all the software components […]]]> 166169 https://devops.com/cisa-nsa-issue-supply-chain-security-guidance-report/ Tue, 21 Nov 2023 12:30:10 +0000 https://devops.com/?p=166818 The NSA, ODNI and CISA have issued guidance to assist software developers and suppliers in shoring up software integrity and security.]]> 166818 https://devops.com/technical-debt-dont-buy-buzzwords/ Wed, 27 Sep 2023 11:30:01 +0000 https://devops.com/?p=165510 Buying into the 'next big new shiny thing' only increases your technical debt. Don MacVittie advises only buying what's necessary.]]> 165510 https://devops.com/the-role-of-sboms-in-software-supply-chain-security/ https://devops.com/the-role-of-sboms-in-software-supply-chain-security/#respond Tue, 23 May 2023 12:30:30 +0000 https://devops.com/?p=161239 The software supply chain has become increasingly complex and dynamic with the rise of cloud computing, open source software and third-party software components and APIs. Widespread damage can occur if third-party APIs, cloud services, SDKs and open source software have security flaws. As a result, software supply chain security has emerged as a critical concern […]]]> https://devops.com/the-role-of-sboms-in-software-supply-chain-security/feed/ 0 161239 https://devops.com/a-devops-guide-to-the-language-of-devsecops/ https://devops.com/a-devops-guide-to-the-language-of-devsecops/#respond Fri, 07 Apr 2023 12:30:58 +0000 https://devops.com/?p=159644 https://devops.com/a-devops-guide-to-the-language-of-devsecops/feed/ 0 159644 https://devops.com/lineaje-unfurls-platform-for-creating-and-managing-sboms/ https://devops.com/lineaje-unfurls-platform-for-creating-and-managing-sboms/#respond Thu, 09 Feb 2023 17:37:16 +0000 https://devops.com/?p=158636 Lineaje this week unfurled a platform for creating and managing the software bills of materials (SBOMs) that are increasingly mandated by enterprise IT organizations and government agencies. Fresh from raising $7 million in seed funding, Lineaje CEO Javed Hasan said the SBOM360 platform provides a simpler way to manage all the SBOMs that will soon […]]]> https://devops.com/lineaje-unfurls-platform-for-creating-and-managing-sboms/feed/ 0 158636 https://devops.com/codenotary-extends-dynamic-sbom-reach-to-serverless-computing-platforms/ https://devops.com/codenotary-extends-dynamic-sbom-reach-to-serverless-computing-platforms/#respond Fri, 09 Dec 2022 17:34:22 +0000 https://devops.com/?p=157346 Codenotary has extended the reach of its platform for automatically generating software bills of materials (SBOMs) to serverless computing platforms running software constructed using functions. Codenotary CTO Dennis Zimmer said because serverless apps are dynamically created, it’s not possible to generate SBOMs using traditional approaches. The TrueSBOM platform makes it possible to create an SBOM […]]]> https://devops.com/codenotary-extends-dynamic-sbom-reach-to-serverless-computing-platforms/feed/ 0 157346