Black Duck Supply Chain Edition Released by Synopsys
Synopsys has released a new software composition analysis tool aimed at helping organizations mitigate upstream risk in their software supply chains.
Black Duck Supply Chain Edition “combines multiple open source detection technologies, automated third-party software bill of materials (SBOM) analysis, and malware detection to provide a comprehensive view of software risks inherited from open source, third-party, and AI-generated code,” says the announcement.
The security tool helps teams manage risks, track dependencies, detect vulnerabilities and malicious packages, and identify license violations and conflicts across the entire application lifecycle.
Learn more at Synopsys.
Related content
- Synopsys Report Shows "Alarming" Increase in High-Risk Vulnerabilities
-
News for Admins
In the news: StarlingX 8.0 Edge Platform; Synopsys Report Shows "Alarming" Increase in High-Risk Vulnerabilities; Akamai Connected Cloud; Red Hat Enterprise Linux Available on Oracle Cloud; Wine 8.0; LibreOffice 7.5; Veracode Report Tracks Security Flaws Over the Application Lifecycle; and Malware Remains Top Cause of Cybersecurity Incidents. - Open Source Malware on the Rise, According to Sonatype Report
- How to Use an SBOM
-
Open source forensics for adaptive detection of threats on CRITIS networks
The open source tool Velociraptor is at the heart of a solution that automatically detects cyber threats in industrial environments, offering a defensive strategy and protecting critical infrastructures.
Subscribe to our ADMIN Newsletters
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Most Popular
Support Our Work
ADMIN content is made possible with support from readers like you. Please consider contributing when you've found an article to be beneficial.
