The open source software easyjson is used by the US government and American companies. But its ties to Russia’s VK, whose CEO has been sanctioned, have researchers sounding the alarm.

Lineaje provides full-lifecycle software supply chain security to meet the specific compliance, governance and automation needs of companies that source, build, buy or sell critical software.

A new Software Acquisition Guide: Supplier Response Web Tool has been released by the US Cybersecurity and Infrastructure Security Agency (CISA) to improve security in software procurement.

With the proliferation of external products such as cloud storage, software as a service, and AI-driven security platforms, managing the risk inherent in using third-party providers has never been ...

Early participants in Chainguard's Partner Program include Bytes, Defy, DevOps1, and EVOTEK, underscoring the global appetite for secure OSS infrastructure. These partners are leveraging Chainguard to ...