The Hill

Software supply chain risk is growing, but mitigation solutions exist

In late 2021, a critical vulnerability was discovered within the Apache-Log4j logging tool. This Log4j tool and vulnerability became infamous because it was used by millions of software packages ...
Dark Reading

On Shaky Ground: Why Dependencies Will Be Your Downfall

Software dependencies, or a piece of software that an application requires to function, are notoriously difficult to manage and constitute a major software supply chain risk. If you're not aware of ...
Network World

Device42 adds cloud dependency mapping to IT discovery product

Device42 this week delivered hybrid cloud discovery capabilities for its IT inventory and asset managementproduct, enabling IT managers to gain near real-time visibility into how cloud assets are ...
techtimes

Top 5 Software Composition Analysis Tools for 2025

Software Composition Analysis, or SCA, is a type of software security tool that focuses on analyzing open-source components within a codebase. When developers create software, they often include ...
Security

The vulnerabilities of PyTorch-nightly

The supply chain plays a curious role in modern the enterprise. We know it’s important, and understand how, in a global economy with components coming from all kinds of places, it’s incredibly ...
Linux Journal

The Evolution of Linux Package Management and Its Impact on Modern Computing

If you’ve ever used a modern Linux distribution, you’ve likely experienced the convenience of installing and updating software with a single command. Package managers, the tools behind this ease of ...