Oracle publishes its last Critical Patch Update of 2020, including 402 patches across its product groups, but only 8 vulnerabilities affecting Java SE, the highest CVSS score of which was 5.3.
Linus Torvalds this week announced the first release candidate of version 5.10 of the Linux kernel (Linux 5.10-rcl), a release that also marks the end of the feature merge window for this EOY 2020 kernel.
New security solution surfaces vulnerabilities in third-party code used in the development of custom applications.
Automated IT and security solutions provider Ivanti today announces two additions to its Neurons "hyper-automation" platform: Neurons for Patch Intelligence and Neurons for Spend Intelligence.
The results of a new survey suggest that a growing number of security and development professionals are convinced of the value of Security Champions programs.
Online course provider Pluralsight made numerous announcements at its Pluralsight LIVE virtual event last week around its technology skills and engineering management platform, unveiled a new strategic partnership, and announced a key acquisition.
At the launch of its annual EclipseCon conference, underway online this week, the Eclipse Foundation published the results of its 2020 IoT Developer Survey.
Red Hat announces an integration of its Ansible automation solution with its OpenShift Kubernetes container platform, making it easier to automate tasks among traditional on-prem and emerging cloud-native infrastructures.
Gitpod is joining forces with GitLab to provide native integration with GitLab's UI, the two organizations announced last week.
Authentication solution provider Okta has extended its Okta Devices Platform Service capabilities to developers via the Okta Devices SDK, which provides packaged tooling to build passwordless sign-in flows through branded push notifications with biometric capabilities, minimizing friction for end-users and increasing security posture.
ZeroNorth announces a new set of capabilities for its SaaS-based security platform aimed at removing friction between security and DevOps teams by making security "integral and transparent" within the SDLC.
Sumo Logic's fourth annual Illuminate user conference, virtual this year because of the pandemic, wrapped up yesterday after two days of educational sessions, expert keynotes, and product and initiative announcements.
Cloud security provider Accurics announced a new GitHub app designed to further automate the programmatic enforcement of security policies throughout the software development workflow.
Kubernetes management platform Rancher Labs 2.0 includes a new installation experience, GitOps at scale for edge clusters, full lifecycle management of Amazon EKS clusters, and security features.
CloudBees recently announced a new set of DevSecOps capabilities for its continuous integration and delivery (CI/CD) solutions, including feature flag integration within the CI and CD environments, which the company is billing as an industry first.
No-code continuous integration and delivery (CI/CD) platform provider ShuttleOps announces new drag-and-drop capabilities for building and deploying Docker container images to self-managed or hosted Kubernetes clusters.
Continuous integration and delivery (CI/CD) platform provider CircleCI today rolled out a new comprehensive dashboard feature designed to provide an overview of the health and usage of its customers' repository build processes.
Software development and quality tools maker SmartBear today announced that it has integrated its API quality platform, ReadyAPI, with its API design and documentation platform SwaggerHub.
Sonatype's malicious code detection bots discovered and confirmed the presence of new vulnerable npm packages that exfiltrate/broadcast the target's IP, username, and device fingerprint info onto a public GitHub page where anyone can gain access.
Microsoft this week unveiled the public preview of Azure Communication Services, a new platform for developers who want a simple and well-supported way to build new communications solutions or integrate them into existing applications.