Where did these mysterious PrismJS npm versions come from?
In 2015, strange 9000.0.x versions of PrismJS appeared on npm downloads, and nobody had a clue where they came from,...
devsecops
Git remote code execution vulnerability patched, upgrade now
The Git project has released patches for a severe remote code execution (RCE) vulnerability, CVE-2021-21300. The flaw can be exploited...
4 free DevSecOps tools for staying on top of vulnerabilities
As reports of cyber attacks via vulnerable software are rampant, building security early on into your software development lifecycle becomes...
Sonatype releases Advanced Development Pack with next-gen DevSecOps intelligence
Fulton, MD – Sonatype, the company that scales DevOps through open source governance and software supply chain automation, today unveils its...