Security | News, how-tos, features, reviews, and videos
JFrog unveiled a number of new platform capabilities including static application security testing and anti-tampering and compliance checks for software releases.
By allowing the use of AI tools proven to be safe, but requiring them to be used within explicit guidelines, you can alleviate both employee frustration and organizational risk.
Cloud security is largely siloed by cloud provider. Enterprises are demanding strategic approaches for complex distributed multicloud deployments.
AI-driven coding is now in wide use, but we may not know all the risks of using it until the damage has been done. Think security problems and code that wastes resources.
From package signing to SBOMs to new developer toolchains, the pieces for securing the software supply chain are starting to come together.
DevSecOps system validates incoming software packages against JFrog’s security research library to establish a repository of trustworthy components for software developers to use.
Govulncheck is a command-line utility that uses the Go vulnerability database to identify known vulnerabilities in Go source code and Go binaries.
Let's talk about how you can stay off the growing list of companies that have been hacked. Spoiler alert: It takes money and commitment.
The powerful capabilities of ChatGPT are being used against enterprise systems. Malicious packages and AI hallucinations are a few of the growing threats.
Uptycs combines threat detection for Kubernetes and container runtimes, along with automated registry scanning and Kubernetes hardening checks. Here are the highlights.
Sponsored Links