Medijski sadržaj
- Tweetovi
- Tweetovi i odgovori
- Medijski sadržaj, trenutna stranica.
-
@OWASP Dependency-Track v3.7 now available. This release includes: - Support for internal components - Increased precision of CPE analysis - SVG badge improvements - Hex repo support for#Erlang and#ElixirLang - Bug fixes https://docs.dependencytrack.org/2019/12/16/v3.7.0/ …#SBOM#SoftwareSupplyChainpic.twitter.com/Gu2rQWyAXT
-
The security team from
@Ozon_ru has created a CLI client called “dtrack-audit”. It works similar to “npm audit” but, like Dependency-Track itself, is ecosystem agnostic. Use with#CycloneDX to identify vulns at build. https://github.com/ozonru/dtrack-audit …#opensource#sbom#appsec#owasppic.twitter.com/T3xOfkd4rY
-
#OWASP Dependency-Track v3.6 is now available. This release supports#VulnDB, performance improvements, detection of OS and hardware vulns, SVG badges,#SBOM pub via webhooks, and more. Download: https://dependencytrack.org/ Change Log: https://docs.dependencytrack.org/changelog/#AppSec#DevSecOpspic.twitter.com/iHVSH3rtcd
-
Here’s a preview of our updated docs which have been greatly enhanced in preparation for the launch of v3.6. Oh, and we have badges!pic.twitter.com/bnhwVaF1qy
-
A VulnDB analyzer will be included in v3.6. This provides the ability to analyze components defined in a
#SBOM for known vulnerabilities. This capability is in addition to the VulnDB mirroring that’s already supported. The new analyzer doesn’t require a mirror. Works directly.pic.twitter.com/6jvsMVUfPh
-
Check out the native integration between Dependency-Track and
@MicroFocusSec#Fortify SSC including background info, setup, and general usage. Auditing static and component analysis results together is ideal for dev teams. https://www.youtube.com/watch?v=RffZFteIhLA …#SBOM#AppSec#OWASP#SCA -
#OWASP Dependency-Track v3.5.0 is now available. This release is a major step forward with improvements to performance, reliability, and quality. Download: http://dependencytrack.org Change Log: http://docs.dependencytrack.org/changelog/#AppSec#DevSecOps#SCA#opensourcepic.twitter.com/G0onJY3rtp
-
Today, we’re celebrating 100K Docker pulls. Since the project reboot 14 months ago, there have been 6 major releases (15 total), an active and engaging community, and growing adoption of
#SBoM as a viable alternative to traditional#SCA. Thank you. Also v3.5.0 is now available.pic.twitter.com/PwoIPiLsom
-
We will be incrementally supporting GitHub Package Registry starting with v3.6.https://youtu.be/N_-Cu9_2YAA
Prikaži ovu nit -
Our website just received an update and now includes an interactive animation showcasing how Dependency-Track approaches
#supplychain risk. https://dependencytrack.org/#SBOM#SCA#ComponentAnalysis#SCRMpic.twitter.com/Xt0P9LgHry
-
Dependency-Track
#Jenkins plugin v2.1.0 released. New in this version is support for configurable Risk Gate Thresholds which can optionally put a job into an UNSTABLE or FAILED state depending on the number of findings for specific severities. Squashed a few bugs as well.pic.twitter.com/K2iSToOjgO
-
#OWASP Dependency-Track v3.4 released! This release includes native support for#KennaSecurity and#Fortify SSC,#NuGet and#PyPi repo support, and lots more. Download: https://dependencytrack.org Change Log: https://docs.dependencytrack.org/changelog/#AppSec#DevSecOps#SCA#opensourcepic.twitter.com/2ANh42yDp3
-
The Dependency-Track Plugin for
#Fortify SSC has been published to the Fortify Marketplace. https://marketplace.microfocus.com/fortify/content/dependency-track-plugin-for-fortify-ssc … Grab it and get SSC prepared for integration when Dependency-Track v3.4 launches later this month.#DevSecOps#AppSec#SAST#SCApic.twitter.com/DEq5w9hwzA
-
Let us know what you’d like to see improved in Dependency-Track v3.5. See an enhancement (or bug) you want done. Upvote it. Help guide the projects direction. Also v3.4 is launching in December with four new integrations. https://github.com/DependencyTrack/dependency-track/issues …
#opensource#sca#DevSecOpspic.twitter.com/NQmPT2akFY
-
Check out our BOM-first approach to continuous component analysis (aka SCA) and see how your team can benefit from the
#PowerOfTheBOM https://youtu.be/nZakPU0wJMo#BOM#SBOM#DevOps#DevSecOps#Jenkins#AppSec#SCA#OWASP -
Jenkins plugin v2.0 released! This is a major milestone and has the ability to upload
#CycloneDX or#SPDX BoMs and get actionable vulnerability intelligence directly in Jenkins. Requires Dependency-Track v3.3.1 (also released today)#OWASP#SBOM#AppSec https://docs.dependencytrack.org/integrations/jenkins/ …pic.twitter.com/XYNVXPK9PE
-
lol, yeah, “Usable Security” is a thing.pic.twitter.com/PWh59bZE04
-
Are you curious to find out what we’re working on or prototyping? Head over to our
#Slack channel (https://owasp.slack.com/messages/proj-dependency-track …) and join the conversation. (Invite: https://join.slack.com/t/owasp/shared_invite/enQtNDI5MzgxMDQ2MTAwLTEyNzIzYWQ2NDZiMGIwNmJhYzYxZDJiNTM0ZmZiZmJlY2EwZmMwYjAyNmJjNzQxNzMyMWY4OTk3ZTQ0MzFhMDY …). We’re currently showing off a next-gen Jenkins plugin with async/sync scanning.#OWASP#SBOMpic.twitter.com/obNBtIw3h5
-
I added a video to a
@YouTube playlist http://youtu.be/d2WMONyBbTw?a Find and Track the hidden vulnerabilities inside your dependencies
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.