Endor Labs has collaborated with Aikido Security, Arnica, Amplify, Kodem, Legit, Mobb, and Orca Security to introduce Opengrep, an initiative designed to maintain open access to static code analysis ...

Aardvark represents OpenAI’s entry into automated security research through agentic AI. By combining GPT-5’s language ...

Developers will have to contend with a dormant turned active malicious code on Visual Studio Code (VS Code) extensions, which ...

Persistent open source security concerns Why developers need to improve at keeping open source components up-to-date The need for a Software Bill of Materials (SBOM) for software supply chain ...

AI assistants are a double-edged sword for developers. On one hand, code-generation assistants have made creating barebones applications easier and led to a surge in code pushed to GitHub. Yet just as ...

Researchers at Protect AI have released Vulnhuntr, a free, open source static code analyzer tool that can find zero-day vulnerabilities in Python codebases using Anthropic's Claude artificial ...

OpenAI has unveiled Aardvark, autonomous AI agent that hunts for software vulnerabilities before hackers can exploit them. Powered by GPT-5, Aardvark could redefine how security teams protect critical ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) today announced the public availability of Thorium, an open-source platform for malware and forensic analysts across the government, ...

The high cost of finding and patching application flaws is well known. Wouldn’t it be cheaper to write secure code in the first place? One of the fastest growing areas in the software security ...

IBM Research recently announced it’s open sourcing its Granite code foundation models, a key element within IBM’s broader family of Granite foundation models. IBM Research introduced its Granite ...