Synopsys has announced it has been recognised as a leader in The Forrester Wave: Software Composition Analysis, Q2 2023. The report identifies the 12 most significant vendors in the software composition analysis (SCA) market and evaluates them against 32 criteria grouped into three high-level categories: current offering, strategy, and market presence. Synopsys’ Black Duck SCA […]
Synopsys has revealed new research that software supply chain risk extends beyond open source. Based on a recent survey of 350 application development, information technology, and cybersecurity decision-makers, the research, conducted by Enterprise Strategy Group (ESG) and commissioned in part by the Synopsys Software Integrity Group, features within the Walking the Line: GitOps and Shift Left
Synopsys, Inc has released the 2022 Open Source Security and Risk Analysis (OSSRA) report. The report, produced by the Synopsys Cybersecurity Research Center (CyRC), examines the results of more than 2,400 audits of commercial and proprietary codebases from merger and acquisition transactions, performed by the Black Duck Audit Services team. The report highlights trends in open source usage within commercial and
Synopsys highlights software supply chain challenges in new OSSRA report Read More »
Synopsys has published the BSIMM12, the latest version of the Building Security In Maturity Model (BSIMM) report, created to help organisations plan, execute, measure, and improve their software security initiatives. BSIMM12 reflects the software security practices observed across 128 firms from multiple industry verticals including financial services, FinTech, independent software vendors, cloud, healthcare, and Internet of Things. BSIMM12 describes the
Synopsys publishes BSIMM12 study Read More »
In this article, Adam Brown, Managing Security Consultant at Synopsys Software Integrity Group, analyses the myths that linger in the financial services industry regarding application security and debunks each one in an effort to provide clarity and guidance. As organisations work to transform their application security (AppSec) practices, they continue to struggle to implement tools
Synopsys | AppSec myths of the financial services industry Read More »
Tim Mackey, Principal Security Strategist, Synopsys Cybersecurity Research Center, offers his exclusive insight on the recent Open Source Security and Risk Analysis (OSSRA) report. Believe it or not, the average number of vulnerabilities in commercial software experienced a staggering growth over the year-long lockdown period. In fact, it was up an astounding 93%. This is
Synopsys article | New research uncovers issues in secure use of Open Source Read More »
Synopsys has announced it will be showcasing the Software Integrity Group’s new Intelligent Orchestration solution at RSA Conference on 17-20 May. Running as an application security automation pipeline, Intelligent Orchestration reportedly ensures the right security tests are performed at the right time. Intelligent Orchestration utilises technology to determine the most appropriate security tests, which includes
Synopsys to present Intelligent Orchestration solution at RSA Conference Read More »
The 2021 Open Source Security and Risk Analysis (OSSRA) report, produced by the Synopsys Cybersecurity Research Centre (CyRC), examines the results of more than 1,500 audits of commercial codebases, performed by the Black Duck® Audit Services team. Download the full report here: https://www.synopsys.com/software-integrity/resources/analyst-reports/open-source-security-risk-analysis.html#
Synopsys | The 2021 Open Source Security and Risk Analysis (OSSRA) Report (Teaser) Read More »
Synopsys released its 2021 Open Source Security and Risk Analysis (OSSRA) report which examined more than 1,500 audits of commercial codebases, performed by the Black Duck Audit Services team. The report highlights trends in open source usage within commercial applications and provides insights to help commercial and open source developers better understand the interconnected software
New study shows rise in outdated components in Commercial Software Read More »
Software company, Synopsys has announced its designation as a CVE Numbering Authority (CNA) by the CVE Program. The group is now authorised to assign CVE identification numbers to newly discovered vulnerabilities and publish information about the vulnerabilities in the associated CVE records. “We’re excited to take this next step in our progression as a good
Synopsys certified as a CVE Numbering Authority (CNA) Read More »
Synopsys has been recognised as a leader in The Forrester Wave: Static Application Security Testing, Q1 2021. The report identifies the 12 most significant vendors in the static application security testing (SAST) market and evaluates them against 28 criteria in three high-level categories: current offering, strategy and market presence. Synopsys’ Coverity SAST solution received the
Forrester recognises Synopsys as a leader in static application security testing Read More »
Boris Cipot, Senior Security Engineer at Synopsys, gives an overview of the company’s 2020 report.
Enter your email and subscribe to our newsletter
Copyright © 2022 Security on Screen by the Security Industry Group
Privacy Policy
