Dark Reading

Software Supply Chain Security Needs a Bigger Picture

The intricate labyrinth of open source dependencies across the global software supply chain has created an application security puzzle of mammoth proportions. Whether open source or closed, most of ...
InfoQ

When DevOps Meets Security to Protect Software

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
CSOonline

Alpha-Omega Project takes a human-centered approach to open-source software security

The Linux Foundation and OpenSSF project, with backing from Microsoft and Google, aims to improve security of 10,000 open-source projects. The Log4j vulnerability crisis that erupted in late-2021 ...