As more and more of the components that make up the applications we use are open source, the need to secure these open source components increases. Of course Equifax is the poster child for this issue.
Checkmarx, one of the leaders i application security scanning has had an open source scanning module for sometime. They have now updated that with a new homegrown engine that greatly improves the ability for their scanner to detect open source vulnerabilities in your applications. www.checkmarx.com/press-releases/c…ecurity-offering
In this DevOps Chat we speak with Matthew Rose of Checkmarx about what this means for you.