The Complete Guide to Prototype Pollution Vulnerabilities
An in-depth look at Prototype Pollution vulnerabilities and how to mitigate them.
Choose Your Type
Choose Your Topic
Our Latest Blog Posts
How Packages’ External Resources Threaten Your Supply Chain
Learn how packages’ external resources threaten your supply chain, and how you can mitigate the risks.
Nurturing the Next Generation of Software and Security Pros – 5 Nonprofits We Love
Let’s look at 5 organizations that teach programming to kids to nurture the next generation of software developers while also trying to close the gender and race gap in tech.
What Is Penetration Testing? A Detailed Guide
Understand what penetration testing is, why it’s important, pentesting vs. vulnerability assessment, learn its stages, approaches, and tools.
Cloud Computing Security: A Primer
What is cloud native computing and what are the top concerns in cloud computing security?
Celebrating Pride: LGBTQ+ Open Source Projects and Programs We Love
To celebrate Pride month, WhiteSource is highlighting a few of our favorite open source projects and programs that support LGBTQ+ communities.
Research Shows Over 100,000 Libraries Affected By Maven Vulnerability CVE-2021-26291
WhiteSource in partnership with Jonathan Leitschuh found over 100,000 libraries affected by Maven vulnerability CVE-2021-26291.
Supply Chain Security – 10 Tips That Won’t Slow Development Down
Learn how developers can adopt easy practices to secure the open source supply chain without slowing down development.
Docker Vs. Kubernetes: A Detailed Comparison
Learn about the relationship between Docker and Kubernetes. Understand the similarities and differences between Docker Swarm vs. Kubernetes.
Top Tips for Technical Due Diligence Process
What is technical due diligence, why it is important for M&As, and which items you need to cover in your technical due diligence checklist.
Biden’s Cybersecurity Executive Order Focuses on Supply Chain Attacks
President Biden’s executive order places strict standards on software sold to the US government. Learn about the executive order and software supply chain attacks.
Reducing Enterprise AppSec Risks: Ponemon Report Key Takeaways
Many enterprises consider applications to be the highest security risk. This survey by Ponemon Institute looks at AppSec risks.