Report from the Department for Science, Innovation & Technology (DSIT) finds weaknesses in current practices.
The post UK Government Report Calls for Stronger Open Source Supply Chain Security Practices appeared first on SecurityWeek.
OpenSSF Releases Security Baseline for Open Source Projects
The Open Source Security Foundation (OpenSSF) has created a structured set of security requirements for open source projects.
The post OpenSSF Releases Security Baseline for Open Source Projects appeared first on SecurityWeek.
Endor Labs and Allies Launch Opengrep, Reviving True OSS for SAST
Opengrep is a new consortium-backed fork of Semgrep, intended to be and remain a true genuine OSS SAST tool.
The post Endor Labs and Allies Launch Opengrep, Reviving True OSS for SAST appeared first on SecurityWeek.
Chainguard Raises $140 Million, Expands Tech to Secure AI Workloads
Software supply chain security startup Chainguard raises a $140 million Series C round that values the company at $1.2 billion.
The post Chainguard Raises $140 Million, Expands Tech to Secure AI Workloads appeared first on SecurityWeek.
US, Allies Warn of Memory Unsafety Risks in Open Source Software
Most critical open source software contains code written in a memory unsafe language, US, Australian, and Canadian government agencies warn.
The post US, Allies Warn of Memory Unsafety Risks in Open Source Software appeared first on SecurityWeek.
New Open Source Tool Hunts for APT Activity in the Cloud
The CloudGrappler open source tool can detect the presence of known threat actors in cloud environments.
The post New Open Source Tool Hunts for APT Activity in the Cloud appeared first on SecurityWeek.
CISA Outlines Efforts to Secure Open Source Software
Concluding a two-day OSS security summit, CISA details key actions to help improve open source security.
The post CISA Outlines Efforts to Secure Open Source Software appeared first on SecurityWeek.
Cisco Releases Open Source Backplane Traffic Visibility Tool for OT
Cisco has released an open source PoC tool named Badgerboard designed for improved backplane network visibility for OT.
The post Cisco Releases Open Source Backplane Traffic Visibility Tool for OT appeared first on SecurityWeek.
Linux Foundation Tackles Financial Fraud With Open Source Platform
The open source platform Tazama provides cost-effective monitoring of digital financial transactions to prevent fraud in real time.
The post Linux Foundation Tackles Financial Fraud With Open Source Platform appeared first on SecurityWeek.
From Open Source to Enterprise Ready: 4 Pillars to Meet Your Security Requirements
Open source is a great way to test the waters and define requirements. But when looking at putting a platform into production, an enterprise-ready solution will ensure you can keep up with business demands.
The post From Open Source to Enterprise Ready: 4 Pillars to Meet Your Security Requirements appeared first on SecurityWeek.