The 2021 OWASP Top 10
We break down the basics of what you need to know about the OWASP Top 10 Vulnerabilities List 2021 & how to use it the right way to support your dev team.
Choose Your Type
Choose Your Topic
Our Latest Blog Posts
Supply Chain Security Update: How Secure is Composer?
Learn what happened, the impact of the attack, how it was discovered, and what you can do to prevent it from affecting your apps
Open Source Risk Management in the Financial Sector
The financial sector has embraced open source, now they need to manage and secure it using a Software Composition Analysis solution.
Securing Your Package Manager’s Lockfiles
learn how your package managers’ lockfiles risk your supply chain security, and how to mitigate the risks.
Shift Left Testing and Its Benefits
Learn what shift left testing means, how it can save you time and costs, and why you need to shift left your open source components’ management.
The Forrester Wave™ Software Composition Analysis, Q3 2021: Key Takeaways
The Forrester Wave on Software Composition Analysis helps identify which vendor offers the best solution to protecting your open source.
Industry Experts Weigh In: Addressing Digital Native Security Challenges
WhiteSource hosted industry experts at a roundtable to provide their insights and tips on the challenges of digital native security
DevOps vs. Agile: What Is the Difference?
Learn about the similarities and differences between Agile and DevOps software development methodologies.
How to Bridge the Cybersecurity Skills Gap
how your organization can help developer and security teams bridge the cybersecurity skills gap
The Complete Guide to Prototype Pollution Vulnerabilities
An in-depth look at Prototype Pollution vulnerabilities and how to mitigate them.
How Packages’ External Resources Threaten Your Supply Chain
Learn how packages’ external resources threaten your supply chain, and how you can mitigate the risks.
Nurturing the Next Generation of Software and Security Pros – 5 Nonprofits We Love
Let’s look at 5 organizations that teach programming to kids to nurture the next generation of software developers while also trying to close the gender and race gap in tech.