anchore15h ago

Shift-left compliance checking ⬅️

Catch violations before deployment, not during audits 🛡️

https://anchore.com/platform/enforce/

#SoftwareSupplyChain #SBOM #CyberSecurity #Compliance

anchore16h ago

Supply chain attacks ↗️ 742% in 2023

Your traditional security stack wasn't built for this fight.

SBOM-first architecture changes everything ⚡

https://anchore.com/platform/

#SoftwareSupplyChain #SBOM #CyberSecurity

ActiveState19h ago

Securing the container was never the whole answer. The application dependencies inside it were always the risk.

In 2026, that gap has a name and a price tag.

https://www.linkedin.com/pulse/view-from-trenches-why-software-supply-chain-still-liability-7qrme/

#OpenSourceSecurity #SoftwareSupplyChain #CyberSecurity

Asfaload22h ago
Not sure it is the right order: our documentation is deployed before our backend is even online :-D
https://www.asfaload.com/doc/
The fastest way to deploy the doc was using https://rust-lang.github.io/mdBook/ , incidentally a #rustlang project like us.
#buildinpublic #mdbook #security #softwaresupplychain
Introduction - Asfaload Documentation

anchore2d ago

Scale-out architecture for web-scale environments 📈

Because your containers don't wait for security scans ⏱️

https://anchore.com/platform/secure/

#SoftwareSupplyChain #SBOM #CyberSecurity #Compliance #DevSecOps

anchore2d ago

SBOM-first isn't just a buzzword—it's the architecture that makes continuous security actually possible 🔄

Feel the difference ⚡

https://anchore.com/platform/

#SBOM #CRA #SoftwareSupplyChain #Compliance

ActiveState2d ago

5 reasons your open source software strategy is a personal liability in 2026.
AI code volume broke the scan-and-pray model. Here's what's left exposed.

https://medium.com/@ActiveState_ASPM/the-five-horsemen-of-the-ai-code-apocalypse-why-your-current-open-source-software-strategy-is-a-78f5b7efe162

#OpenSourceSecurity #SoftwareSupplyChain #CyberSecurity

The Five Horsemen of the AI Code Apocalypse: Why Your Current Open Source Software Strategy is a…

The era of human scale development is over. In 2026, the velocity of synthetic code generation has turned the software supply chain into a…

Medium
ActiveState3d ago

AI pulls open source dependencies faster than humans can vet them. The perimeter was never the problem.

The ingredients were.

We broke down where application layer security actually stands in 2026.

https://substack.com/home/post/p-193372464

#OpenSourceSecurity #SoftwareSupplyChain #CyberSecurity

The Illusion of the Clean Perimeter

The modern software development lifecycle is no longer operating at human scale.

All Things Open4d ago

🚀 NEW on We ❤️ Open Source 🚀

Bryan Behrenshausen offers a clear look at OSPO work, from inbound and outbound efforts to upstream contributions.

The piece also explores why software supply chain visibility is important, but can increase pressure on maintainers without added support.

https://allthingsopen.org/articles/inside-ospo-open-source-program-managers

#WeLoveOpenSource #OpenSource #OSPO #SoftwareSupplyChain

Analyst2075d ago

Microsoft Disrupts Open-Source Projects with Sudden Account Suspensions

Microsoft's sudden suspension of developer accounts has left maintainers of popular open-source projects locked out, unable to publish crucial security patches and software updates for Windows users. This abrupt move has sparked concern, with many wondering who will keep the digital roof fixed when the people who…

https://osintsights.com/microsoft-disrupts-open-source-projects-with-sudden-account-suspensions?utm_source=mastodon&utm_medium=social

#Opensource #Microsoft #AccountSuspensions #EmergingThreats #SoftwareSupplyChain

Microsoft Disrupts Open-Source Projects with Sudden Account Suspensions

Microsoft suspends developer accounts used in open-source projects, blocking security patches. Learn how account suspensions impact Windows users and what happens next, read now.

OSINTSights