Blog – WhiteSource

AppSec, DevSecOps, open source license compliance, and audits: we've got you covered

Top Tips for Getting Started With a Software Composition Analysis Solution

Top tips for getting started with WhiteSource Software Composition Analysis to ensure your implementation is successful.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Top 10 Application Security Best Practices

Secure your organization's software by adopting these top 10 application security best practices and integrating them into your software development life cycle.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Find & Fix open source vulnerabilities in minutes
Start Free Trial
Be Wise — Prioritize: Taking Application Security To the Next Level

How prioritization can help development and security teams minimize security debt and fix the most important security issues first.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Eclipse SW360: Main Features

All about Eclipse SW360 - an application that helps manage the bill of materials — and its main features.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Why Manually Tracking Open Source Components Is Futile

Why you shouldn't track open source components usage manually and what is the correct way to do it.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Black Box Testing: What You Need to Know

What are the different types of black box testing, how is it different from while box testing, and how can black box testing help you boost security?
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Top 7 Questions to Ask When Evaluating a Software Composition Analysis Solution

Software Composition Analysis software helps manage your open source components. Here are 7 questions you should ask before buying an SCA solution.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
×

Stay up to date, subscribe to our newsletter today!

Email

Email

Country

I agree to receive email updates from WhiteSource

Thank you!

Error - something went wrong!
Top 9 Code Review Tools for Clean and Secure Source Code
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Why Patch Management Is Important and How to Get It Right

How to make sure you have a solid patch management policy in place, check all of the boxes in the process, and use the right tools.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Application Security Testing: Security Scanning Vs. Runtime Protection
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Our Favorite Web Vulnerability Scanners
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
License Compatibility: Combining Open Source Licenses

While open source licenses are free, they still come with a set of terms & conditions that users must abide by. Read why license compatibility is a major concern.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Why You Need an Open Source Vulnerability Scanner

An open source vulnerability scanner is a tool that helps organizations identify and fix any risks associated with open source software usage. Learn all about it.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Everything You Wanted to Know About Open Source Attribution Reports
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Does IAST Fit Into Your AppSec Program?

Interactive application security testing (IAST) works from within an application to detect and report issues while an application is running.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Dynamic Application Security Testing: DAST Basics

Dynamic application security testing (DAST), or black-box testing, finds vulnerabilities by attacking an application from the outside while it's is running.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
July 2020 Open Source Security Vulnerabilities Snapshot
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Find & Fix open source vulnerabilities in minutes
Start Free Trial
When’s the Right Time for an Open Source Audit?

Open Source Audit. Three words which can make a big difference to the continued success of your organization? But when is the right time to start one, and why is it so important anyhow? Find...
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Software Development Life Cycle: Finding a Model That Works

The software development life cycle has are two main models: Waterfall and Agile. This blog identifies the phases of the SDLC and most common models.
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Static Application Security Testing: SAST Basics
- Facebook
- Twitter
- Email
- LinkedIn
Read Article
Loading More...

Blog – WhiteSource

Top Tips for Getting Started With a Software Composition Analysis Solution

Top tips for getting started with WhiteSource Software Composition Analysis to ensure your implementation is successful.

Top 10 Application Security Best Practices

Secure your organization's software by adopting these top 10 application security best practices and integrating them into your software development life cycle.

Be Wise — Prioritize: Taking Application Security To the Next Level

How prioritization can help development and security teams minimize security debt and fix the most important security issues first.

Eclipse SW360: Main Features

All about Eclipse SW360 - an application that helps manage the bill of materials — and its main features.

Why Manually Tracking Open Source Components Is Futile

Why you shouldn't track open source components usage manually and what is the correct way to do it.

Black Box Testing: What You Need to Know

What are the different types of black box testing, how is it different from while box testing, and how can black box testing help you boost security?

Top 7 Questions to Ask When Evaluating a Software Composition Analysis Solution

Software Composition Analysis software helps manage your open source components. Here are 7 questions you should ask before buying an SCA solution.

Top 9 Code Review Tools for Clean and Secure Source Code

Why Patch Management Is Important and How to Get It Right

How to make sure you have a solid patch management policy in place, check all of the boxes in the process, and use the right tools.

Application Security Testing: Security Scanning Vs. Runtime Protection

Our Favorite Web Vulnerability Scanners

License Compatibility: Combining Open Source Licenses

While open source licenses are free, they still come with a set of terms & conditions that users must abide by. Read why license compatibility is a major concern.

Why You Need an Open Source Vulnerability Scanner

An open source vulnerability scanner is a tool that helps organizations identify and fix any risks associated with open source software usage. Learn all about it.

Everything You Wanted to Know About Open Source Attribution Reports

Does IAST Fit Into Your AppSec Program?

Interactive application security testing (IAST) works from within an application to detect and report issues while an application is running.

Dynamic Application Security Testing: DAST Basics

Dynamic application security testing (DAST), or black-box testing, finds vulnerabilities by attacking an application from the outside while it's is running.

July 2020 Open Source Security Vulnerabilities Snapshot

When’s the Right Time for an Open Source Audit?

Open Source Audit. Three words which can make a big difference to the continued success of your organization? But when is the right time to start one, and why is it so important anyhow? Find...

Software Development Life Cycle: Finding a Model That Works

The software development life cycle has are two main models: Waterfall and Agile. This blog identifies the phases of the SDLC and most common models.

Static Application Security Testing: SAST Basics