by Azalio tdshpsk | Sep 13, 2023 | Security
Devsecops company JFrog on September 13 introduced ML Model Management, a set of capabilities for the JFrog Software Supply Chain Platform designed to streamline the management and security of machine learning models.Using ML Model Management and the JFrog Software...
by Azalio tdshpsk | Sep 5, 2023 | Security
CIOs and CISOs have long grappled with the challenge of shadow IT—technology that is being used within an enterprise but that is not officially sanctioned by the IT or security department. According to Gartner research, 41% of employees acquired, modified, or created...
by Azalio tdshpsk | Jul 24, 2023 | Security
The Log4j vulnerability in December 2021 spotlighted the software supply chain as a massively neglected security surface area. It revealed just how interconnected our software artifacts are, and how our systems are only as secure as their weakest links. It also...
by Azalio tdshpsk | Jul 19, 2023 | Security
JFrog has unveiled JFrog Curation, a devsecops system designed to prevent malicious or risky open source or third-party software packages from entering an organization’s software development pipeline.JFrog Curation blocks the use of risky open source software packages...
by Azalio tdshpsk | Jul 14, 2023 | Security
Govulncheck, a command-line tool to help users of Google’s Go programming language find known vulnerabilities in project dependencies, has reached 1.0.0 status, the Go security team said.Unveiled July 13, Govulncheck can analyze both binaries and source code. It...
by Azalio tdshpsk | Jun 23, 2023 | Security
AquaSec analyzed a sample of 1% of GitHub repositories and found that about 37,000 of them are vulnerable to RepoJacking, including the repositories of companies such as Google and Lyft.
