IBM acquires source code-scanning tools The company has acquired Ounce Labs, which makes products intended to help companies catch security and compliance problems early in the development process ...

GitHub's secret scanning alerts are available on all public repositories, and its push protection is now offered for custom secret patterns.

Arnica adds new software supply chain security capabilities delivered through real-time code risk management tools.

The proliferation of open-source and proprietary software has revolutionized development, enabling rapid innovation and ...

Etherscan, one of the most commonly used Ethereum blockchain scanning websites, introduced a tool that uses artificial intelligence (AI) to help users interpret the source code of smart contracts ...

Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks.

Socket, a startup that provides a scanning tool to detect security vulnerabilities in open source code, today announced that it raised $20 million in a Series A round led by Andreessen Horowitz ...

What Are Application Security Testing Tools?  Application security testing (AST) tools identify vulnerabilities and ...

It’s a bad day for bugs. Earlier today, Sentry announced its AI Autofix feature for debugging production code and now, a few hours later, GitHub is launching the first beta of its code-scanning ...

CodeSec tool was built by Contrast Security to help developers secure code quicker without disrupting their workflows.