Password management company Dashlane has made its mobile app code available on GitHub for public perusal, a first step it says in a broader push to make its platform more transparent. The Dashlane ...

MOUNTAIN VIEW, Calif. — Vendors touting wares for source code management at an industry event Wednesday cited different business strategies for this market. But all made solid points about critical ...

Software supply chain security provider Arnica has added new real-time scanning tools to its namesake code-security suite, including static application security testing (SAST), infrastructure as code ...

Sophisticated cyberattacks targeting a variety of open source projects, including the Trivy security-scanner project, the widely used Axios Javascript package, and now Anthropic's accidental ...

Behavior-based application security platform Arnica has announced the integration of its application security capabilities into Bitbucket, the Atlassian-owned source-code management solution used by ...

From autonomous vulnerability remediation to real-time scrutiny of AI-generated code, AI is impacting security at every stage of the software development process. At Black Hat USA 2025 and DEF CON 33, ...

Code quality testing startup SonarSource SA today announced the upcoming release of SonarQube Advanced Security, a new offering that will extend the company’s analysis capabilities beyond first-party ...

The Orca Cloud Security Platform bridges the gaps between cloud and application security with new Static Application Security Testing (SAST), OSS License Scanning, and AI-Driven remediation ...

Application programming interfaces (APIs) have had their status upgraded from the domain of programming tool to the proverbial icing on the cake to top a digitisation business plan. APIs allow ...

The high cost of finding and patching application flaws is well known. Wouldn’t it be cheaper to write secure code in the first place? One of the fastest growing areas in the software security ...

Following the trio of the Log4J vulnerability and the more recent compromise of two open source libraries in the NPM ecosystem and one in Spring Core, supply chain security is weighing heavily on ...