Nov 18, 2025/3 min read

Vibe coding with a conscience: Why security must be in the mix

Chai Bhat

Nov 18, 2025 | 3 min read

Nov 12, 2025/2 min read

Black Duck SCA takes on AI: Securing the future of software with model scanning

Mike McGuire

Nov 12, 2025 | 2 min read

Oct 27, 2025/1 min read

Black Duck’s product release round-up: faster fixes, smarter security

Rachel Zahr

Oct 27, 2025 | 1 min read

Oct 14, 2025/2 min read

Black Duck named a Leader in the 2025 Gartner Magic Quadrant for Application Security Testing for the eighth time

Jason Schmitt

Oct 14, 2025 | 2 min read

Oct 08, 2025/6 min read

AI in DevSecOps: A critical crossroads for security and risk management

Fred Bals

Oct 08, 2025 | 6 min read

Sep 18, 2025/2 min read

The Shai-Hulud npm malware attack: A wake-up call for supply chain security

Mike McGuire

Sep 18, 2025 | 2 min read

Sep 11, 2025/3 min read

The recent npm supply chain attack: Lessons in securing your software dependencies

Mike McGuire

Sep 11, 2025 | 3 min read

Aug 26, 2025/3 min read

Key findings from “The State of Embedded Software Quality and Safety 2025” report

Fred Bals

Aug 26, 2025 | 3 min read

Aug 19, 2025/2 min read

Accelerate onboarding and testing of GitHub repos with the Black Duck Security app

Corey Hamilton

Aug 19, 2025 | 2 min read

Aug 12, 2025/5 min read

What you need to know about the NIST Secure Software Development Framework

Fred Bals

Aug 12, 2025 | 5 min read

Aug 05, 2025/3 min read

Black Duck Assist: AI code security assistance in your IDE

Patrick Carey

Aug 05, 2025 | 3 min read

Jul 31, 2025/5 min read

Faster, Smarter Vulnerability Alerts: AI in Black Duck Security Advisories

Mike McGuire

Jul 31, 2025 | 5 min read

Jul 24, 2025/4 min read

Unlocking the full potential of application security: Key findings from the Black Duck customer value study

Jason Schmitt

Jul 24, 2025 | 4 min read

Jul 21, 2025/5 min read

Key takeaways from the “2024 Software Vulnerability Snapshot” report

Fred Bals

Jul 21, 2025 | 5 min read

Jul 17, 2025/7 min read

Navigating the EU Cyber Resilience Act

Corey Hamilton, Fred Bals

Jul 17, 2025 | 7 min read

Jul 08, 2025/6 min read

Understanding Section 524B of the FD&C Act

Mike McGuire

Jul 08, 2025 | 6 min read

Jun 30, 2025/6 min read

Beyond detection: Understanding vulnerability reachability in SCA

Mike McGuire

Jun 30, 2025 | 6 min read

Jun 09, 2025/3 min read

Transitive dependencies are exponentially increasing open source software risk

Mike McGuire

Jun 09, 2025 | 3 min read

Jun 03, 2025/3 min read

Three steps to ensuring the reliability and security of your C++ projects

Corey Hamilton

Jun 03, 2025 | 3 min read

May 08, 2025/3 min read

How to secure AI-generated code with DevSecOps best practices

Steven Zimmerman

May 08, 2025 | 3 min read

Mar 12, 2025/4 min read

The 2025 OSSRA report uncovers answers to common open source questions

Fred Bals

Mar 12, 2025 | 4 min read

Feb 04, 2025/2 min read

Understanding the DeepSeek model license: Balancing openness and responsibility

Rich Kosinski

Feb 04, 2025 | 2 min read

Feb 03, 2025/4 min read

Analyze AI-Generated Code with the Black Duck Snippet API

Mike McGuire

Feb 03, 2025 | 4 min read

Oct 24, 2024/3 min read

Understanding generative AI risks in software development

Phil Odence

Oct 24, 2024 | 3 min read

Oct 17, 2024/4 min read

Addressing cloud-native app development challenges with scalable security tools

Charlotte Freeman

Oct 17, 2024 | 4 min read