A naukri.com initiative
Sdtimes
1d
324
Image Credit: Sdtimes
ActiveState relaunching its platform for open source management
- ActiveState, which previously managed open source dynamic programming languages, has rebranded and released an open source management platform to help users streamline DevSecOps, manage open source risks and ensure supply chain security with tools for discovery, analysis, remediation and governance.
- It proactively manages open-source risks, and ensures reproducible builds and streamlines upgrades, reducing the burden on developers.
- Most software applications today are less secure than they have ever been, Baker said.
- Software supply chain attacks are expected to double by 2030, to about $140 billion. Organizations need to become much more proactive in how they manage open source, using tools to enforce policies that cause the least amount of disruption to the development process and foster greater collaboration, said ActiveState CEO, Stephen Baker.
- Among the capabilities of new ActiveState Open Source Management Platform are the ability to discover open source, monitor it through a single dashboard, and facilitate analysis, prioritisation, policy and governance.
- ActiveState integrates with existing tools to keep the open source current and more secure. It eliminates 90% of the undifferentiated heavy lifting that every developer needs to do to research dependencies, upgrades, and risk before integrating new open-source into their organization.
- ActiveState offers an open source supply chain security platform that is built on automation to provide timely insights into how vulnerable open source is and what developers should do to make it less vulnerable.
- The platform is for customers to manage their own open-source that they are consuming, a much more secure format that will improve the application security posture and, in return, not destroy developer productivity.
- With ActiveState, there is no reactive model. Instead, it applies all the rules and policies even before open-source gets into user's organizations, so that clean and compliant open source is incorporated when the application is being built.
- Every organization on the planet is now dependent on open source, and threat actors and cyber attackers are now depending on the lack of organizational controls on open source to plan their next attack.
Read Full Article
19 Likes
For uninterrupted reading, download the app