A little while back, we were talking about utilizing compiler warnings as first step to make our C code less error-prone and increase its general stability and quality. We know now that the C compiler ...

Contrast Application Security Testing (AST) is a runtime-driven security solution that detects and prioritizes ...

One of the best ways to protect your software project from avoidable bugs is the use of Java static code analysis tools. These tools can help identify and fix problematic code before it reaches ...

It has become standard fare for large, enterprise organizations to reach out to the open source community to fill the void between the software their projects need, and the amount of software their ...

Software supply chain security provider Arnica has added new real-time scanning tools to its namesake code-security suite, including static application security testing (SAST), infrastructure as code ...

The 2018 Verizon Data Breach Investigations Report says most hacks still happen through breaches of web applications. For this reason, testing and securing applications has become a priority for many ...

Cloud-native security startup Aqua Security Software Ltd. has spent some of the money it raised earlier this year to acquire an open-source scanning tool called tfsec. The company said that with today ...

OpenAI has unveiled Aardvark, autonomous AI agent that hunts for software vulnerabilities before hackers can exploit them. Powered by GPT-5, Aardvark could redefine how security teams protect critical ...

It's been too long since I've done a general-purpose round-up of new Visual Studio extensions -- almost eight months since Rounding Up the Newest Extensions for Visual Studio 2017. As always happens ...