Skip to main content

SD Times news digest: Updates announced for Amazon CodeGuru Reviewer; JFrog Xray updates; Sysdig and Snyk announce partnership

Recently, Amazon announced new features being added to Amazon CodeGuru Reviewer, a developer tool that works to detect security vulnerabilities in code and provides intelligent recommendations to improve code quality.

These updates include: 

  • A new Detector Library that describes the detectors that CodeGuru Reviewer uses when looking for possible defects and includes code samples for Java and Python
  • New security detectors that work to detect log-injection flaws in Java and Python code 

These new features are available today in all AWS Regions where Amazon CodeGuru is offered. For more information, visit here

JFrog Xray updates 

DevOps company JFrog today introduced contextual analysis security capabilities in JFrog Xray, the company’s DevSecOps solution. These new features enable users to more precisely determine the threat level and relevance of common vulnerability exposures (CVEs).

The goal of this update is to create more rapid and accurately-prioritized remediation of security vulnerabilities. This provides for a holistic, automated, and scalable solution geared at finding, replacing, recovering, and prioritizing hazardous CVEs. 

“With so many vulnerabilities these days, customers need solutions that help them focus on what actually needs protection. By providing binary-level detection of each vulnerability, Xray’s contextual analysis helps developers and security teams make more informed decisions about a particular vulnerability’s impact so they can confidently and quickly execute remediation plans, while reducing overhead,” said Nati Davidi, SVP of JFrog Security. 

Sysdig and Snyk announce partnership

The unified container and cloud security company, Sysdig, and the developer security company, Snyk, today announced the integration of Sysdig Secure with Snyk Container. This combination works to cover container security from development through operations. 

According to internal testing, this allows for the elimination of 95% of vulnerability alerts using runtime intelligence from Sysdig Secure with Snyk Container. 

“For too long, developers have been tasked with the impossible: fighting the unrelenting vulnerability noise that compromises both their speed as well as their company’s overall security. Together with Sysdig, we’re now empowering millions more developers worldwide to innovate securely. We’re excited for what’s ahead as together we advance the global DevSecOps movement in 2022 and beyond,” said Peter McKay, chief executive officer at Snyk.

The post SD Times news digest: Updates announced for Amazon CodeGuru Reviewer; JFrog Xray updates; Sysdig and Snyk announce partnership appeared first on SD Times.



from SD Times https://ift.tt/3yRlzLM
Labels:

Comments

Post a Comment

Popular posts from this blog

A guide to data integration tools

CData Software is a leader in data access and connectivity solutions. It specializes in the development of data drivers and data access technologies for real-time access to online or on-premise applications, databases and web APIs. The company is focused on bringing data connectivity capabilities natively into tools organizations already use. It also features ETL/ELT solutions, enterprise connectors, and data visualization. Matillion ’s data transformation software empowers customers to extract data from a wide number of sources, load it into their chosen cloud data warehouse (CDW) and transform that data from its siloed source state, into analytics-ready insights – prepared for advanced analytics, machine learning, and artificial intelligence use cases. Only Matillion is purpose-built for Snowflake, Amazon Redshift, Google BigQuery, and Microsoft Azure, enabling businesses to achieve new levels of simplicity, speed, scale, and savings. Trusted by companies of all sizes to meet...
1 comment
Read more

Olive and NTT DATA Join Forces to Accelerate the Global Development and Deployment of AI Solutions

U.S.A., March 14, 2021 — Olive , the automation company creating the Internet of Healthcare, today announced an alliance with NTT DATA , a global digital business and IT services leader. The collaboration will fast track the creation of new healthcare solutions to transform the health experience for humans — both in the traditional healthcare setting and at home. As a member of Olive’s Deploy, Develop and Distribute Partnership Programs , NTT DATA is leveraging Olive’s open platform to innovate, build and distribute solutions to Olive’s customers, which include some of the country’s largest health providers. Olive and NTT DATA will co-develop new Loops — applications that work on Olive’s platform to provide humans real-time intelligence — and new machine learning and robotic process automation (RPA) models. NTT DATA and Olive will devote an early focus to enabling efficiencies in supply chain and IT, with other disciplines to follow. “This is an exciting period of growth at Olive, so...
Post a Comment
Read more

2022: The year of hybrid work

Remote work was once considered a luxury to many, but in 2020, it became a necessity for a large portion of the workforce, as the scary and unknown COVID-19 virus sickened and even took the lives of so many people around the world.  Some workers were able to thrive in a remote setting, while others felt isolated and struggled to keep up a balance between their work and home lives. Last year saw the availability of life-saving vaccines, so companies were able to start having the conversation about what to do next. Should they keep everyone remote? Should they go back to working in the office full time? Or should they do something in between? Enter hybrid work, which offers a mix of the two. A Fall 2021 study conducted by Google revealed that over 75% of survey respondents expect hybrid work to become a standard practice within their organization within the next three years.  Thus, two years after the world abruptly shifted to widespread adoption of remote work, we are dec...
Post a Comment
Read more