Security news that informs and inspires

Archive

12 results for tag Open Source:

Tech Leaders, Federal Officials Seek a Way Forward for Open Source Security

White House officials and leaders from Apple, Google, GitHub, and other companies met to discuss ways to improve the security of open source projects critical to national security.

Open Source, Log4j

Securing the Open Source Software Supply Chain

Improving the security of the open source software supply chain will require better understanding of dependencies, and cooperation from developers and users.

Open Source, China

Keeping Dependencies Straight in the Software Supply Chain

The nature of modern software development is that development teams have to rely on "blind trust" for some of the code components written by someone else. A new attack method showed how build systems could be tricked into pulling code from the wrong projects.

Software Development, China, Open Source

Malicious Code Found in Package Repositories

Attackers have increasingly targeted the software supply chain by populating package managers such as RubyGems and npm with malicious code.

Software Security, Open Source

IBM Releases Open Source Encryption Toolkit

Protecting data while in use is a challenge. IBM released an open source toolkit to help developers implement fully homomorphic encryption in their applciations.

Encryption, Open Source