#sbom

[ follow ]
#software-supply-chain #cybersecurity #cyber-resilience-act #vulnerability-management #ot-security
Information security
fromSecurityWeek
2 days ago

New Guidance Calls on OT Operators to Create Continually Updated System Inventory

OT organizations must build and maintain definitive, continually updated records using asset inventories, SBOMs and prioritized processes to enable holistic risk assessment and controls.
#cyber-resilience-act
fromDevOps.com
1 month ago
Information security

The EU's Cyber Resilience Act: Redefining Secure Software Development - DevOps.com

fromDevOps.com
1 month ago
Information security

The EU's Cyber Resilience Act: Redefining Secure Software Development - DevOps.com

more#cyber-resilience-act
DevOps
fromfaun.pub
2 weeks ago

SBOM-Driven Deployments: Blocking Builds Without Verified Dependencies

Generate and enforce SBOMs in CI/CD to block risky dependencies and prevent supply chain breaches.
Information security
fromMedium
2 weeks ago

GitHub Actions as a Secure DevOps Orchestrator: Beyond CI/CD

GitHub Actions can serve as a security command center to automate SBOM creation, secret scanning, compliance enforcement, and to block risky deployments before production.
Artificial intelligence
fromDevOps.com
1 month ago

Survey Surfaces Raft of AI Coding Issues Involving Embedded Systems - DevOps.com

AI coding assistants are widely used in embedded-system development, but governance, security, and open-source license risk confidence remain lacking.
fromSecuritymagazine
1 month ago

Report Reveals Gap Between AI Use and AI Security In Embedded Software

The State of Embedded Software Quality and Safety 2025 from Black Duck reveals a disconnect between the organizational use of AI and AI security. The embedded software landscape is transforming, largely driven by AI, with 89.3% of organizations already utilizing AI coding assistants and 96.1% integrating products with open source AI models. However, 21.1% of organizations still lack confidence in their capabilities to prevent AI from opening the door to vulnerabilities.
Software development
#software-supply-chain
fromSecuritymagazine
1 month ago
Information security

CISA Issues Software Bill of Materials Draft, Encourages Public Comments

Updated minimum elements for SBOMs guide standardized, machine-readable SBOM generation and sharing to improve software supply chain transparency and risk-informed cybersecurity decisions.
fromTechzine Global
4 months ago
Software development

Dropping the SBOM, why software supply chains are too flaky

The importance of managing software supply chain security is rising due to increased vulnerabilities and the prevalence of open-source software.
more#software-supply-chain
Information security
fromDevOps.com
3 months ago

Survey Surfaces Uneven Adoption of SBOMs to Secure Software - DevOps.com

Many organizations are struggling to meet SBOM requirements and integrate necessary tools.
A significant majority believe AI can improve security visibility but also raise new risks.
[ Load more ]