Where Open Source Supply Chain Software Can Have Real Business Impact

By prioritizing transparency, businesses may reduce exposure to threats while maintaining development agility.

Open Source Container Security: A Push for Stronger Software Supply Chains

Open source designs offer flexibility, yet they also create long-term dependency paths that may hide more risk than developers expect. Many companies now treat container security as the first real ...

GitLab Collaborates with Google Cloud to Bring Agentic DevSecOps to Enterprise Teams Using Vertex AI

AI agents in GitLab Duo Agent Platform can now call foundation models through Vertex AI, including Gemini models, with agent ...

GitLab Extends Agentic AI with New Automated Security Remediation, Pipeline Setup, and Delivery Analytics

Agentic SAST Vulnerability Resolution is now generally available, automatically generating ready-to-merge code fixes and ...

Curity looks to reinvent IAM with runtime authorization for AI agents

Traditional authentication is incapable of securing AI agents, the company says, as it announces Access Intelligence.
Federal News Network

DoD Modernization Exchange 2026: Marine Corps’ David Raley on reducing burdens of security ATOs

Through Operation StormBreaker, mission owners can inherit about 80% of all security controls and move software into ...
Security BoulevardOpinion

Why Anthropic’s Mythos Is a Systemic Shift for Global Cybersecurity

With the release of Anthropic’s Project Glasswing and Claude Mythos, how should CISOs navigate the arrival of automated ...
InfoQ

Harness Reimagines Artifact Management for DevSecOps with New Artifact Registry

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Randy Shoup discusses the "Velocity ...
CIO

AI in the interview room

A technical interview goes exceptionally well. The candidate answers every question with confidence, explains complex ...