Open source and third-party software bugs haunt even the best developers’ projects, despite the industry’s best efforts to avoid them. The amount of insecure software tied to reused third-party ...

Source code repository software company GitHub today said that in the coming weeks it will roll out Protected Branches, a new feature that should help companies cut down on catastrophes stemming from ...

GitLab, a startup that provides open source and premium source code repository software that people use to collaborate on software, is announcing today that it has acquired Gitter, a startup that ...

A hacker going by the handle "Pl0xP" cloned a large number of GitHub repositories and slightly changed the cloned repository names, in a typosquatting effort to impersonate legitimate projects — thus ...

The Git Project has disclosed the existence of a severe vulnerability which can lead to the execution of arbitrary code. The vulnerability, CVE-2018-17456, was disclosed on Friday. The ...

Thousands of GitHub repositories were copied with their clones altered to include malware, a software engineer discovered today. While cloning open source repositories is a common development practice ...

The developers behind Git and various companies providing Git repository hosting services have pushed out a fix to patch a dangerous vulnerability in the Git source code versioning software. The fix ...

Researchers have found another 17 malicious packages in an open source repository, as the use of such repositories to spread malware continues to flourish. This time, the malicious code was found in ...

Key recommendations from the NIST’s latest guidance and why they are relevant to modern organizations developing and delivering software. Software supply chain (SSC) attacks continue to be one of the ...

Thanks to a combination of sophisticated methodology and social engineering, this particular attack seems to be very difficult to stop. When you purchase through links on our site, we may earn an ...