Event-driven AppSec is here: Thoughtful automation finds risk earlier
Feb 05, 2026
|
6 min read
Security Consulting and Services
12
Stories
10
Writers
The BSIMM16 report: What today’s software security programs are really doing—and why it matters
Feb 04, 2026
|
2 min read
Vibe coding and its implications
Jan 06, 2026
|
4 min read
Bridging the divide: Why friction between dev and security persists (and how to fix it)
Dec 16, 2025
|
4 min read
The Shai-Hulud npm malware attack: A wake-up call for supply chain security
Sep 18, 2025
|
2 min read
The Importance of a Third-Party Due Diligence Perspective on Code Risk
Aug 04, 2025
|
3 min read
Faster, Smarter Vulnerability Alerts: AI in Black Duck Security Advisories
Jul 31, 2025
|
5 min read
Navigating the EU Cyber Resilience Act
Jul 17, 2025
|
7 min read
Q&A: What You Need to Know About Open Source Software Risk in 2025
May 22, 2025
|
5 min read
Major changes and challenges of PCI DSS 4.0
Nov 04, 2024
|
6 min read
Understanding generative AI risks in software development
Oct 24, 2024
|
3 min read