I have my Black Duck Audit reports; What’s next?

Wednesday, November 23, 2022

Get the most out of your Black Duck Open Source Audit by understanding the report components and next steps you need to take. Black Duck® Open Source Audit reports provide a tremendous amount of information. We have been performing audits and delivering results to customers for over 15 years, and we continue to seek to …

Experts warn of critical security vulnerability discovered in OpenSSL

Wednesday, November 16, 2022

Understand what steps your organization needs to take now to prepare for the upcoming patch to address OpenSSL’s critical security vulnerability on November 1. Security experts are giving organizations advance disclosure of a critical vulnerability discovered in OpenSSL version 3.0 and above, leaving many to speculate about the potential impact to their organization. The OpenSSL project team …

API Performance Testing for Success

Wednesday, November 09, 2022

As the rate of delivery for applications and services continues to rise, performance testing often takes a backseat in the race to delivering apps on-time. This 2022 holiday season is expected to be bigger than ever, with holiday shopping growing 15.5% to $236 billion. During this make-or-break time of year, companies can’t afford for their …

Secure cloud-native apps and APIs at the speed your business demands

Wednesday, October 26, 2022

The cloud-native development model entered the mainstream in the recent years, with technologies such as microservices and serverless computing, containers, APIs, and infrastructure-as-code (IaC) at the forefront of this trend. Thanks to these emerging technologies, organizations can build and run their apps fast, in a distributed manner and without reliance on physical hardware infrastructures. But …

Understanding the hows and whys of open source audits

Wednesday, October 19, 2022

If you’re part of a modern business that does any software development, your dev teams are using open source components to move quickly, save money, and leverage community innovation. If you’re a law firm or a consultant, your clients use open source. And if you’re on the lookout for your next acquisition, you’ll be evaluating …

FinServ APIs: How to Improve Governance & Deploy with Confidence

Wednesday, October 12, 2022

Financial services innovation continues to progress at a breakneck pace. For example, fintech developers can programmatically spin up accounts, move money, and issue and manage cards with Increase or embed financial services into their marketplace with Stripe – capabilities that were unimaginable just a few years ago. With fintech startups raising more than $50 billion …

Smart home under fuzzing

Thursday, October 06, 2022

Smart homes rely on secure devices. Fuzz testing identifies software vulnerabilities in smart devices by fuzzing wireless and IoT protocols. The Internet of Things (IoT) has been a buzzword for years, but have you noticed that something has changed around you? Take a moment to think about your home. How many connected devices can you …

The Importance of Managing Complexity

Thursday, September 29, 2022

Introduction We write software to make our lives easier; to reduce the complexity and chaos. The need to reduce complexity is at the very center of software development. Unfortunately, we tend to mirror the complexity of the real world in our software and this leads to many problems. As Bruce Schneier in his essay A Plea …

software license

Five types of software licenses you need to understand

Thursday, September 22, 2022

If a company creates software, it also reuses code, including code snippets, libraries, functions, frameworks, and entire applications. In fact, in most applications the majority of the code comprises reused third-party components. And all software code comes with certain rights and obligations if used by others or incorporated in a company’s codebase. Even code snippets …

API-first development and the case for API mocking

Thursday, September 15, 2022

One morning, you realize you have a great idea for an API. You discuss it with your team, then start building out the business case and technical requirements. Where do you go from there? You could write out the business requirements for the API and then code it. Or you could describe your API in …