Hot Topics

Dependency Management

Dependency Management: Protecting Your Code

| | Dependency Management, Dependency Updates
Learn how to protect your application’s code with dependency management, and why automation is critical for effective dependency updates ...
Mend
Apple CEO Tim Cook, looking grim

‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE

| | App Sec & Supply Chain Security, Apple, Apple iOS, AppSec & Supply Chain Security, CocoaPods, CVE-2024-38366, CVE-2024-38368, dependencies, dependency injection, Dependency Management, macos, macOS Security, Modern Software Supply Chains, Open Source and Software Supply Chain Risks, open source software supply chain, open source software supply chain security, SB Blogwatch, software dependencies, Supply-Chain Insecurity, third-party dependencies, trust dependencies
Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug ...
Security Boulevard

Dependency Management vs Dependency Updates: What’s the Difference?

| | Dependency Management, Dependency Updates
Keeping dependencies up to date is a big part of dependency management, but it's not everything. Learn more about the differences between the two ...
Mend

Python Developers Targeted Via Fake Crytic-Compilers Package

| | Crytic-compilers, Cyber Attack Prevention, Cyber Threats, Cybersecurity, Cybersecurity News, Data theft prevention, Dependency Management, Developer vigilance, information stealer, Lumma malware, malware-as-a-service, Package authenticity, PyPI security, Python developers, Python package security, Python security best practices, secure coding practices, Software Development, supply chain attack, Threat Intelligence, Typosquatting
As per recent reports, cybersecurity experts uncovered a troubling development on the Python Package Index (PyPI) – a platform used widely by developers to find and distribute Python packages. A malicious package ...
TuxCare
Transformative Benefits of Automated Dependency Updates for Your Applications

Transformative Benefits of Automated Dependency Updates for Your Applications

| | Automation, Dependency Management, DEVOPS
Properly managing dependency updates can effectively reduce vulnerabilities by up to 70% and provide access to new features and bug fixes that improve application performance. But too often, teams must manually update ...

Application Security Check Up