In brief: Open-source development projects often must rely on many external dependencies, saving developers the work of building new functionality from scratch. Google's new tool is the latest part of ...

Google has released OSV-Scanner, an open-source front-end interface to the Open Source Vulnerability (OSV) database. The OSV database is a distributed, open-source database that stores vulnerability ...

The flaw could allow attackers to bypass Nuclei’s template signature verification process to inject malicious codes into host systems. A widely popular open-source tool, Nuclei, used for scanning ...

Securing the software supply chain is an increasingly complex and time-consuming challenge for enterprises. To help developers find vulnerability data for open source components, Google launched ...

Trivy is now one tool for all cloud native scanning needs including source code, repositories, images, artifact registries, Infrastructure as Code (IaC) templates and Kubernetes environments. With ...

Tenable Network Security, the sponsor for the widely used open source vulnerability scanning tool Nessus for discovering weaknesses in software, plans to commercialize Nessus in a major upgrade to be ...

Israeli cybersecurity startup Seal Cybersecurity Solutions Inc. today revealed that it has raised $13 million in new funding to accelerate its go-to-market efforts and expand its core vulnerability ...

Despite their reputation for sometimes being substandard, open-source security products are becoming more technologically sophisticated, on par with some of the most advanced data security products on ...

With the added features, Enforce can now generate and ingest software bills of materials for container images, automate vulnerability scans and generate reports. Software supply chain security ...

Dozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls. A now ...