Get a Handle on Software Supply Chain Security with LFX

Source: thenewstack.io

Get a Handle on Software Supply Chain Security with LFX

Category: Software, Database, Security, github, gitlab, bitbucket

https://thenewstack.io/ransomware-is-more-real-than-you-think/ deservedly makes the headlines, but protecting the https://thenewstack.io/securing-the-software-supply-chain-with-a-software-bill-of-materials/ is just as important. At the recent https://events.linuxfoundation.org/lf-member-summit/, Jim Zemlin, the https://training.linuxfoundation.org/training/course-catalog/?utm_content=inline-mention executive director unveiled its newest effort in protecting our code: https://security.lfx.linuxfoundation.org/#/. LFX Security currently supports dependency and vulnerability scanning for JavaScript, Node.js (npm), Java,.NET, Scala, Ruby, Python, Golang, and PHP.

Since new security vulnerabilities appear every day, the LFX Security vulnerability database is updated every week.

It does this by scanning your project’s Git-based repository and tracking down your dependencies’ licenses against the https://spdx.org/licenses license list.
Read Full Article On thenewstack.io
Achieve superior email deliverability with ToastMail! Our AI-driven tool warms up inboxes, monitors reputation, and ensures emails reach their intended destination. Sign up today for a spam-free future.

Related Articles

Remediating the October 2018 Git Security Vulnerability – Microsoft DevOps Blog
Remediating the October 2018 Git Security Vulnerability – Microsoft DevOps Blog
Splunk Aims to Trigger DevOps Processes
Splunk Aims to Trigger DevOps Processes
DevOps Chat: JFrog Announces $165 Million Funding Round
DevOps Chat: JFrog Announces $165 Million Funding Round
Community Partners
CrowdSec
Autonomous.ai | Best Standing Desks & Ergonomic Office Chairs

CloudWays

Namecheap

Become a Partner?
DevOps Careers
    • Add a Job?