SCA stories - Page 2

Rapid AI and cloud adoption is fuelling a new wave of cyber risk, as Tenable warns of exposed software supply chains and “ghost” identities.

ActiveState launches a 79m-component secure open source catalogue to centralise software supply chains and cut enterprise vulnerability risk.

Armis launches AI-native Centrix platform to secure application code, aiming to cut false alarms and safeguard AI-assisted development.

Veracode upgrades its Package Firewall and testing tools to block malicious software packages before they enter development pipelines.

GumGum hires Tim Manton as Sales Director for NSW and QLD to drive attention-led advertising growth across key Australian markets.

CloudBolt signs a multi-year AWS pact to tighten sales alignment and boost cloud management, FinOps and Kubernetes optimisation tools.

Checkmarx has been named a leader in the IDC MarketScape ASPM 2025 report for its AI-driven, developer-focused application security platform.

Black Duck has launched a GitHub app to automate security scans, helping development teams identify vulnerabilities early and streamline application security.

GitHub has partnered with Endor Labs, integrating advanced security software to help developers swiftly identify and manage critical vulnerabilities within the platform.

Endor Labs has launched AI Model Discovery, a feature helping businesses identify and manage open source AI models, enhancing application security.

Veracode has acquired Phylum's technology to enhance their ability to combat software threats, addressing rising risks in open-source software security.

Sonatype and OpenText have partnered to create an integrated platform that enhances application security, streamlining compliance and risk management.

Microsoft has integrated Endor Labs' Software Composition Analysis into Defender for Cloud, enabling unified security from code development to runtime.

Sonatype has been named a leader in Software Composition Analysis by Forrester, praised for its high performance in security and dependency management.

Data Theorem has unveiled Code Secure, a product designed to bolster software supply chain security by integrating advanced security features.

Traceable AI has teamed up with AWS to bolster API security, enabling seamless integration through the AWS Marketplace amid rising threats to cloud-native systems.

Revenera launches OSS Inspector for IntelliJ IDEA, helping developers identify open source software risks directly in their IDE, ensuring secure, compliant code.

Claroty partners with AWS to bolster cyber-physical systems security through a multi-year collaboration, targeting organisations integrating cloud technologies.

Sonatype releases its SBOM Manager, a crucial tool to help organisations track and manage software components.

ForAllSecure reveals new AI-powered tool, Mayhem, a dynamic software bill of materials tool that proactively battles exploitable application vulnerabilities.