Google releases new open-source security software program
By MYBRANDBOOK
According to the Synopsys Cybersecurity Research Center (CyRC) 2021 “Open Source Security and Risk Analysis” (OSSRA) report, 95% of all commercial programs include open source software. According to the number of CyRCs, most of that code contains old or insecure code. But how can you determine which libraries and other components are safe without digging deep into your code? Google and the Open Source Security Foundation (OSSF) have a quick and easy answer, the OpenSSF Security Scorecard.
As per Texasnewstoday, these scorecards are based on an automated set of pass / fail checks and provide a quick review of many open source software projects. Scorecard projects are automated security tools that generate “risk scores” for open source programs.
This is important because only some organizations have implemented systems and processes to check for new open source dependencies on security issues. However, even with Google, using all of its resources makes this process tedious, manual, and error-prone. To make matters worse, many of these projects and developers are resource-constrained. result? Security often has a lower priority in the task list. This makes critical projects vulnerable to exploits without following proper security best practices.
The Scorecard project hopes that the release of Scorecard v2 will facilitate security checks and facilitate security implementation. This includes making new security checks, scaling up the number of projects to be scored, and making this data easily accessible for analysis.
For developers, scorecards help reduce the effort and manual effort required to continuously evaluate package changes as they maintain the project’s supply chain. Consumers can automatically access risk to make informed decisions about program acceptance, look for alternative solutions, and work with maintainers to make improvements.
InterGlobe’s Rahul Bhatia and C.P. Gurnani together announce
In a move that is set to transform the AI landscape, Rahul Bhatia, Group M...
Download masked Aadhaar to improve privacy
Download a masked Aadhaar from UIDAI to improve privacy. Select masking w...
Sterlite Technologies' Rs 145 crore claim against BSNL rejecte
An arbitrator has rejected broadband technology company Sterlite Technolog...
ID-REDACT® ensures full compliance with the DPDP Act for Indi
Data Safeguard India Pvt Ltd, a wholly-owned subsidiary of Data Safeguard ...
EXIDE INDUSTRIES LTD.
NUMERIC INDIA, A Group Brand Legrand
QUICK HEAL TECHNOLOGIES PVT. Ltd.
STERLITE TECHNOLOGIES LTD.
Technology Icons Of India 2023: Rajendra Singh Pawar
Rajendra Singh Pawar is an entrepreneur and businessperson who founded...
Technology Icons Of India 2023: Sridhar Vembu
Sridhar Vembu is an Indian billionaire business magnate and the Founde...
Technology Icons Of India 2023: Sunil Gupta
Sunil Gupta is the Co-founder, Managing Partner & CEO of Yotta Infrast...
BEL leveraging next generation technologies to keep the country ahead in Defence space
Bharat Electronics Limited (BEL) is a Navratna PSU under the Ministry ...
C-DAC keeps India ahead in IT & Electronics R&D space
Centre for Development of Advanced Computing (C-DAC) is the premier R&...
CSCs enabling rural India digitally empowered
Common service centres (CSCs) are digital access points under the Digi...
IRIS GLOBAL SERVICES PVT. LTD.
Iris Global services is one of the leading distribution houses that d...
TECHNOBIND SOLUTIONS PVT. LTD.
TechnoBind’s business model is focused on identifying and partnering...
ADITYA INFOTECH LTD.
Aditya Infotech Ltd. (AIL) – the technology arm of Aditya Group, is ...