Guides
Protect AI models, data, and systems
Test for behavioral risks in conversational AI
Mitigating risks and future trends
AppSec types, tools, and best practices
Automating dependency updates
Manage open source code
Keep source code safe
Improve transparency, security, and compliance
Pre-production scanning and runtime protection
Secure containerized applications
White Hat Hacking – Not What You Expect
Discover the world of white hat hacking and the importance of ethical hackers in open source projects.
How to Set Up an Open Source Strategy
Learn how to set up an open source strategy for your software development org. Understand the key considerations, and implementation steps..
CVE (Common Vulnerabilities and Exposures) — What is it and how to understand it
What are CVEs and how are they published? What kind of information do CVEs offer about security vulnerabilities in publicly released software?
The 10 Best Security Conferences to Attend in 2021
Discover the top 10 security conferences to attend in 2021, whether in-person or virtually.
What You Need To Know About Application Security Testing Orchestration
Discover the importance of Appsec Testing Orchestration in the evolving security threat landscape. Learn how to manage tools effectively.
Comparing Docker Images To Docker Containers
Learn the differences between Docker images and containers. Understand how Docker revolutionizes containerization technology.
Apache Struts Vulnerabilities Pose ‘Stay or Go’ Question
Stay informed about the latest Apache Struts vulnerabilities and the ongoing debate of whether to continue using the framework or migrate off it.
Get to know Mend Merge Confidence Feature
Introducing Mend Merge Confidence, a feature to save time and reduce risk in updating dependencies. Learn how it works and more.
What Is CVSS v3.1? Understanding The New CVSS
Learn about the Common Vulnerability Scoring System (CVSS) v3.1 & how it measures severity, not risk, in assessing security vulnerabilities.
White Box Testing Guide
Learn about White Box Testing in software development with this comprehensive guide. Understand the types, techniques, tools, advantages.
Top 8 BSD License’s Questions Answered
Get answers to the top 8 BSD License questions in this blog. Learn about the terms, compatibility with GPL, copyleft status, and more.
SCA vs SBOM: Getting Started With Software Composition Analysis
Top tips for starting with a software composition analysis solution. Build a team, set goals beyond scanning, understand the data model, make policies work, start small.
Open Source Copyleft Licenses: All You Need to Know
All you need to know about Open Source Copyleft Licenses. Learn about the history, benefits, and considerations of using copyleft licenses.
How to Expose Ports in Docker
Learn how to expose ports in Docker with different networking rules. Understand the differences between EXPOSE, --expose, -P, and -p flags.
Be Wise — Prioritize: Software Security Vulnerability Prioritization
Learn how to prioritize software security vulnerabilities effectively to ensure your team is addressing the most urgent threats first.
Eclipse SW360: Main Features
Learn about the main features of Eclipse SW360, an open source tool to manage software components.
Never miss a post. Opt-out at any time.
You’re all set to receive our latest posts.
Map your maturity against the global standards. Receive a personalized readiness report in under 5 minutes.
