by Azalio tdshpsk | Oct 2, 2023 | Security
Open source is everywhere; a Synopsys study found that 96% of all software code bases analyzed included open source software. That’s the good news. Ironically, it’s also the bad news, as the very pervasiveness of open source introduces risk. Decades ago, proprietary...
by Azalio tdshpsk | Sep 25, 2023 | Security
In the technology world, the latter half of the 2010s was mostly about slight tweaks, not sweeping changes: Smartphones got slightly better, and computer processing somewhat improved. Then OpenAI unveiled its ChatGPT in 2022 to the public, and—seemingly all at once—we...
by Azalio tdshpsk | Sep 13, 2023 | Security
Devsecops company JFrog on September 13 introduced ML Model Management, a set of capabilities for the JFrog Software Supply Chain Platform designed to streamline the management and security of machine learning models.Using ML Model Management and the JFrog Software...
by Azalio tdshpsk | Sep 5, 2023 | Security
CIOs and CISOs have long grappled with the challenge of shadow IT—technology that is being used within an enterprise but that is not officially sanctioned by the IT or security department. According to Gartner research, 41% of employees acquired, modified, or created...
by Azalio tdshpsk | Jul 24, 2023 | Security
The Log4j vulnerability in December 2021 spotlighted the software supply chain as a massively neglected security surface area. It revealed just how interconnected our software artifacts are, and how our systems are only as secure as their weakest links. It also...
by Azalio tdshpsk | Jul 19, 2023 | Security
JFrog has unveiled JFrog Curation, a devsecops system designed to prevent malicious or risky open source or third-party software packages from entering an organization’s software development pipeline.JFrog Curation blocks the use of risky open source software packages...
