Blog – WhiteSource

AppSec, DevSecOps, open source license compliance, and audits: we've got you covered

Top 7 Questions to Ask When Evaluating a Software Composition Analysis Solution

Software Composition Analysis software helps manage your open source components. Here are 7 questions you should ask before buying an SCA solution.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Top 9 Code Review Tools for Clean and Secure Source Code
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Find & Fix open source vulnerabilities in minutes
Start Free Trial
Why Patch Management Is Important and How to Get It Right
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Application Security Testing: Security Scanning Vs. Runtime Protection
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Our Favorite Web Vulnerability Scanners
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
License Compatibility: Combining Open Source Licenses

While open source licenses are free, they still come with a set of terms & conditions that users must abide by. Read why license compatibility is a major concern.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Why You Need an Open Source Vulnerability Scanner

An open source vulnerability scanner is a tool that helps organizations identify and fix any risks associated with open source software usage. Learn all about it.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
×

Stay up to date, subscribe to our newsletter today!

Email

Email

Country

I agree to receive email updates from WhiteSource

Thank you!

Error - something went wrong!
Everything You Wanted to Know About Open Source Attribution Reports
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Does IAST Fit Into Your AppSec Program?

Interactive application security testing (IAST) works from within an application to detect and report issues while an application is running.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Dynamic Application Security Testing: DAST Basics

Dynamic application security testing (DAST), or black-box testing, finds vulnerabilities by attacking an application from the outside while it's is running.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
July 2020 Open Source Security Vulnerabilities Snapshot
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
When’s the Right Time for an Open Source Audit?

Open Source Audit. Three words which can make a big difference to the continued success of your organization? But when is the right time to start one, and why is it so important anyhow? Find...
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Software Development Life Cycle: Finding a Model That Works

The software development life cycle has are two main models: Waterfall and Agile. This blog identifies the phases of the SDLC and most common models.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Static Application Security Testing: SAST Basics
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
CI/CD and the Promise of Agile Transformation

Learn how CI/CD (continuous integration/continuous delivery) pushes frequent, incremental software updates & fixes regardless of size using automation tools.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
June 2020 Open Source Security Vulnerabilities Snapshot
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Forrester's State of Application Security, 2020: Key Takeaways
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Find & Fix open source vulnerabilities in minutes
Start Free Trial
DevSecOps vs. SecDevOps: A Rose by Any Other Name?
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Gartner 2020 Magic Quadrant for Application Security Testing: Key Takeaways
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
May Open Source Security Vulnerabilities Snapshot
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Loading More...

Blog – WhiteSource

Top 7 Questions to Ask When Evaluating a Software Composition Analysis Solution

Software Composition Analysis software helps manage your open source components. Here are 7 questions you should ask before buying an SCA solution.

Top 9 Code Review Tools for Clean and Secure Source Code

Why Patch Management Is Important and How to Get It Right

Application Security Testing: Security Scanning Vs. Runtime Protection

Our Favorite Web Vulnerability Scanners

License Compatibility: Combining Open Source Licenses

While open source licenses are free, they still come with a set of terms & conditions that users must abide by. Read why license compatibility is a major concern.

Why You Need an Open Source Vulnerability Scanner

An open source vulnerability scanner is a tool that helps organizations identify and fix any risks associated with open source software usage. Learn all about it.

Everything You Wanted to Know About Open Source Attribution Reports

Does IAST Fit Into Your AppSec Program?

Interactive application security testing (IAST) works from within an application to detect and report issues while an application is running.

Dynamic Application Security Testing: DAST Basics

Dynamic application security testing (DAST), or black-box testing, finds vulnerabilities by attacking an application from the outside while it's is running.

July 2020 Open Source Security Vulnerabilities Snapshot

When’s the Right Time for an Open Source Audit?

Open Source Audit. Three words which can make a big difference to the continued success of your organization? But when is the right time to start one, and why is it so important anyhow? Find...

Software Development Life Cycle: Finding a Model That Works

The software development life cycle has are two main models: Waterfall and Agile. This blog identifies the phases of the SDLC and most common models.

Static Application Security Testing: SAST Basics

CI/CD and the Promise of Agile Transformation

Learn how CI/CD (continuous integration/continuous delivery) pushes frequent, incremental software updates & fixes regardless of size using automation tools.

June 2020 Open Source Security Vulnerabilities Snapshot

Forrester's State of Application Security, 2020: Key Takeaways

DevSecOps vs. SecDevOps: A Rose by Any Other Name?

Gartner 2020 Magic Quadrant for Application Security Testing: Key Takeaways

May Open Source Security Vulnerabilities Snapshot