Software composition analysis (SCA) and digital forensics are two ways of understanding what software artifacts make up a software system or application, and identifying their security impact. They ...

Black Duck receives highest possible scores in nine of the 25 criteria and second highest score overall in the current offering category. The report states: "An astonishing 77% of codebases are ...

Supply chain security startup Socket Inc. announced today that it has acquired cloud-based automated code review software startup Coana ApS for an undisclosed sum. Founded in 2021, Coana is a Danish ...

Silicon Valley venture capital juggernaut Sequoia is backing a fledgling Danish startup to build a next-gen software composition analysis (SCA) tool, one that promises to help companies filter through ...

Fulton, Md., March 04, 2025 (GLOBE NEWSWIRE) -- Sonatype ®, the leader in software supply chain security, today announced end-to-end AI Software Composition Analysis (AI SCA) capabilities that enable ...

BETHESDA, Md.--(BUSINESS WIRE)--GrammaTech, a leading provider of application security testing products and software research services, today announced a new version of its CodeSentry binary SCA ...

Modern software teams build software faster than ever. However, with that speed comes a major responsibility. A single outdated library or mismanaged license can expose the entire application to risks ...

Application security company Veracode has acquired malicious package analysis, detection, and mitigation technology from software supply chain security startup Phylum, along with some staff who worked ...

In recent years, cyberattacks on software supply chains have surged, intensifying the pressure on DevSecOps teams to fortify software applications. With up to 90% of an application's code base ...