Celebrating Pride: LGBTQ+ Open Source Projects and Programs We Love
To celebrate Pride month, WhiteSource is highlighting a few of our favorite open source projects and programs that support LGBTQ+ communities.
Choose Your Type
Choose Your Topic
Our Latest Blog Posts
Research Shows Over 100,000 Libraries Affected By Maven Vulnerability CVE-2021-26291
WhiteSource in partnership with Jonathan Leitschuh found over 100,000 libraries affected by Maven vulnerability CVE-2021-26291.
10 Supply Chain Security Tips That Won’t Slow Development Down
Learn how developers can adopt easy practices to secure the open source supply chain without slowing down development.
Docker Vs. Kubernetes: A Detailed Comparison
Learn about the relationship between Docker and Kubernetes. Understand the similarities and differences between Docker Swarm vs. Kubernetes.
Top Tips for Technical Due Diligence Process
What is technical due diligence, why it is important for M&As, and which items you need to cover in your technical due diligence checklist.
Biden’s Cybersecurity Executive Order Focuses on Supply Chain Attacks
President Biden’s executive order places strict standards on software sold to the US government. Learn about the executive order and software supply chain attacks.
Reducing Enterprise AppSec Risks: Ponemon Report Key Takeaways
Many enterprises consider applications to be the highest security risk. This survey by Ponemon Institute looks at AppSec risks.
Open Source Vulnerabilities Overview: Apache Struts vs. Spring
We analyzed published open source security vulnerabilities in Struts and Spring to learn more about the state of vulnerability management.
Three New Supply Chain Attack Methods You Should Be Aware Of
Read the latest supply chain security news and updates to learn about new supply chain methods exploited in April.
How To Secure Your SDLC The Right Way
SDLC security should be a top priority nowadays as attacks are directed to the application layer more then ever before and the call for more secure apps for customers strengthens
Developer Security Champions Rule the DevSecOps Revolution
Learn what a developer security champion is and how it will help your developers shift security left.
Welcome to WhiteSource, Diffend!
Today we’re thrilled to announce that Diffend, an innovative software supply chain security service, is now part of WhiteSource.