Open Source Risk in the AI EraAI is accelerating innovation—but it’s also amplifying risk across the software supply chain.As reported by Security Boulevard, Sonatype is tackling this challenge ...

It has been a busy week for supply-chain attacks targeting open source software available in public repositories, with ...

Open source security startup Seal Security on July 29 announced raising $13 million in a Series A funding round.

Open source software (OSS) is the backbone of modern software development, empowering industries from finance and healthcare to government and technology to innovate faster and reduce costs. However, ...

Malicious PyPI packages, repo hijacks, and CVEs in Python containers put devs at risk. Learn how to stay secure.

Many companies lack visibility into complex digital supply chains, meaning hidden risks and regulatory exposure. Cyber ...

A new report out today from software supply chain security firm Sonatype Inc. details how the infamous North Korea-backed ...

CodeSecCon is the premier virtual event that brings together developers and cybersecurity pros to revolutionize the way ...

North Korea's infamous Lazarus Group hackers are increasing their weaponisation of open-source software, according to a new ...

Chainguard, the secure foundation for software development and deployment, today announced that it listed Chainguard Containers in the AWS Marketplace for the U.S. Intelligence Community (ICMP). ICMP ...

Third-party attacks are one of the most prominent trends within the threat landscape, showing no signs of slowing down, as demonstrated by recent high-profile cyber incidents in the retail ...

Sonatype, an end-to-end software supply-chain security firm, has appointed Bhagwat Swaroop as chief executive officer.