-
@OWASP Dependency-Track v3.7 now available. This release includes: - Support for internal components - Increased precision of CPE analysis - SVG badge improvements - Hex repo support for#Erlang and#ElixirLang - Bug fixes https://docs.dependencytrack.org/2019/12/16/v3.7.0/ …#SBOM#SoftwareSupplyChain pic.twitter.com/Gu2rQWyAXT
-
Shout out to the wonderful Dependency-Track community who contributed feedback and code to make this release possible. Care about
#SoftwareSupplyChain and want to get involved in this#opensource project? We’re always looking for quality contributions. https://github.com/DependencyTrack/dependency-track …https://twitter.com/DependencyTrack/status/1206634049671970818 …
-
Java Deserialization: Running Faster Than a Bear → 5 steps to improve your
#softwaresupplychain security http://bit.ly/28RgKEu @Ulitzer -
Wham! Bam! Hot Pocket Ham Sandwiches are lurking inside your JavaScript. http://ow.ly/KnUS302ZfeE
@jdan#softwaresupplychain -
Next-generation tools are impacting
#SoftwareSupplyChain; how is your enterprise adapting?@InfoWorld https://www.infoworld.com/article/3270958/software/how-next-generation-tools-are-impacting-your-software-supply-chain.html …pic.twitter.com/emQYnqhkYp
-
Watching
@weekstweets present "We are all Equifax"#AllDayDevOps#softwaresupplychain pic.twitter.com/4rf8FRsmCN – mjesto: Microsoft Reactor
-
this reminds me of the sourcing part in
#SoftwareSupplyChain "Choosing an open source project supplier is an important decision" -
Aren’t Google’s own Titan keys released this week (https://cloud.google.com/security-key/ ) just white-labelled Fietian keys?
#softwaresupplychain https://chinachange.org/2018/08/23/google-recommends-product-from-a-chinese-company-with-communist-party-and-military-ties-for-its-advanced-protection-program/amp/ … -
A State of the Software Supply Chain report has revealed the endemic use of vulnerable components by UK businesses, with the average UK enterprise having downloaded 21,000 components with a known security flaw. https://www.devopsonline.co.uk/software-supply-chain-report-uk-businesses-use-vulnerable-components/ …
#securecoding#coding#softwaresupplychain -
Happy that we are using our own stuff successfully. http://sot.ag/9YwWn
#softwaresupplychain#aoftwarelicensing -
Learn how to build a secure
#softwaresupplychain w/@RedHatNews enterprise software &@Sonatype tools. Watch now: http://bit.ly/1XewmGx -
Pretty neat news for those that want to be proactive about their
#SoftwareSupplyChain. Good on you@sonatype http://www.financialbuzz.com/sonatype-makes-nexus-firewall-available-to-million-developers-1020190 … -
The Applications Security will be “Trend Topic” for 2018. How to guarantee it in the Software Supply Chain..
#Appsec#applicationsecurity#softwaresupplychain#cybersecurityhttps://lnkd.in/gVFGHHv -
Image Scanning for Amazon Elastic Container Registry out now! Enable image scans on push for your repositories to ensure every image is automatically checked against an aggregated set of CVEs.
#aws#containers#defenseindepth#softwaresupplychain https://lnkd.in/fnK5rAh -
#Insignary's President TJ Kang discusses the importance of knowing your#softwaresupplychain in his latest article on@iotagenda! http://bit.ly/2mqsPaM -
ProTip: Generating CycloneDX BOMs is built in to
@Sonatype Nexus IQ v70 or higher.#SBOM#SoftwareSupplyChain pic.twitter.com/B6vM1gvlCT
-
Listen to
@allanfriedman talk about the importance of Software Bill-of-Materials (and Twinkies). Then discover how CycloneDX, an opensource SBOM format, can help. https://cyclonedx.org/#SoftwareSupplyChain#SBOM#opensource#CycloneDXhttps://twitter.com/securityweekly/status/1204119647890673664 … -
Software Supply Chain Attacks: How to Disrupt Attackers
@ap0x https://devops.com/software-supply-chain-attacks-how-to-disrupt-attackers …#opensource#sdlc#security#soc#softwaresupplychain#supplychainattackspic.twitter.com/Yr0NHOYWS8
-
Getting ready for
#S4x20 and looking forward to seeing everyone! If you're interested in firmware & software supply chain security, don't miss my talk.#softwaresupplychain pic.twitter.com/TgTxatrCE3
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.