There's a false sense of security around open source code, according to Trustwave researchers Brandon Myers and Assi Barak. Their deeper point was that open source code is prone to vulnerabilities ...

The DHS and CISA booth at the 2019 RSA conference in San Francisco. (Scoop News Group photo) The Cybersecurity and Infrastructure Security Agency (CISA) and other federal agencies released guidance ...

A reflection of the Department of Homeland Security logo in the eyeglasses of a cybersecurity analyst (Mark J. Terrill/AP/File) There’s no question that open-source software is central to the ...

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...

Socket, a startup that provides a scanning tool to detect security vulnerabilities in open source code, today announced that it raised $20 million in a Series A round led by Andreessen Horowitz (a16z) ...

Get the latest federal technology news delivered to your inbox. The Cybersecurity and Infrastructure Security Agency published a new roadmap Tuesday that the nation's cyber defense agency will use to ...

Get the latest federal technology news delivered to your inbox. The federal government wants public input on how to better secure open source software — an increasingly critical component of the ...

In the intricate landscape of software development, the question of whether open source software provides superior security compared to proprietary alternatives has sparked a longstanding debate. The ...

Supply chain security startup Socket Inc. announced today that it has raised $40 million in new funding to fuel its mission to modernize security for open-source software and expand its team across ...

In February, The Linux Foundation’s Open Source Security Foundation (OpenSSF) initiated the Open Source Project Security Baseline (OSPS Baseline) to establish minimum security requirements for ...