Blog | ReversingLabs | Jaikumar Vijayan (3)

November 30, 2023

The AI executive order: What AppSec teams need to know

While the new White House EO is largely focused on foundational AI, security teams reviewing AI initiatives are still in the hot seat.

November 1, 2023

5 best practices for securing your CI/CD with software bills of materials

SBOMs are essential — but making them useful is tricky in continuous integration/continuous deployment environments. Here are the key best practices.

October 26, 2023

How mature is your open-source risk management? S2C2F helps map dependencies

OpenSSF's Secure Supply Chain Consumption Framework can help better lay out risk for open-source components — but remediation is left out of the picture.

April 4, 2023

Docker's BuildKit adds attestation: How it works and key limitations

Here's what you need to know about BuildKit, how to leverage its SBOM capabilities — and its limitations for comprehensive supply chain security.

March 1, 2023

3 reasons to upgrade your AppSec testing to tackle supply chain security

Modern software development practices are a primary target for software supply chain attacks. Here's why traditional application security tools alone are not enough to mitigate these new risks

January 25, 2023

Lessons from Log4Shell: 4 key takeaways for DevSecOps teams

Top leaders and practitioners from eBay, Fidelity, T-Mobile and Tasktop share lessons from the Log4Shell vulnerability. Here are four key takeaways.

January 18, 2023

Why you should get out in front of software security requirements

Get out in front of new compliance requirements for a competitive advantage. Here's what your software organization needs to know.

November 21, 2022

4 ways GitOps can help secure your software pipeline

GitOps can help control configuration drift and enable your infrastructure security to shift left, for starters. Here are four ways it can enable better software security.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

The AI executive order: What AppSec teams need to know

5 best practices for securing your CI/CD with software bills of materials

How mature is your open-source risk management? S2C2F helps map dependencies

Docker's BuildKit adds attestation: How it works and key limitations

3 reasons to upgrade your AppSec testing to tackle supply chain security

Lessons from Log4Shell: 4 key takeaways for DevSecOps teams

Why you should get out in front of software security requirements

4 ways GitOps can help secure your software pipeline

Topics

Special Reports

The 2025 Software Supply Chain Security Report

Upcoming Webinars

ConversingLabs

Topics

Follow us

Subscribe

Special Reports