Composition Analysis stories
Manifest flags AI readiness gap between execs & AppSec
3 days ago
#
digital transformation
#
cloud security
#
application security
Manifest research reveals executives overestimate AI security readiness, as AppSec teams warn of unmanaged tools, blind spots and rising risk.
Security debt surges as legacy vulnerabilities pile up
Last week
#
data protection
#
devops
#
application security
Security debt hits 82% of organisations as legacy flaws linger over a year, with third-party code driving most critical vulnerabilities.
AI, cloud adoption driving new surge in cyber exposure
Last week
#
data protection
#
digital transformation
#
pam
Rapid AI and cloud adoption is fuelling a new wave of cyber risk, as Tenable warns of exposed software supply chains and “ghost” identities.
ActiveState unveils 79m-strong secure open source catalogue
Last month
#
devops
#
digital transformation
#
application security
ActiveState launches a 79m-component secure open source catalogue to centralise software supply chains and cut enterprise vulnerability risk.
Armis unveils AI-native Centrix platform for app security
Last month
#
devops
#
application security
#
devsecops
Armis launches AI-native Centrix platform to secure application code, aiming to cut false alarms and safeguard AI-assisted development.
Veracode boosts package firewall to block malicious code
Thu, 29th Jan 2026
#
devops
#
cloud security
#
application security
Veracode upgrades its Package Firewall and testing tools to block malicious software packages before they enter development pipelines.
AI adoption to double ROI by 2026 amid rising cloud costs
Sat, 22nd Nov 2025
#
devops
#
supply chain
#
apm
AI adoption is set to double ROI by 2026 as businesses move to focused integration amid security challenges, says Harness Field CTO Martin Reynolds.
AppOmni launches Heisenberg to tackle software supply risks
Thu, 30th Oct 2025
#
application security
#
devsecops
#
supply chain
AppOmni has launched Heisenberg, an open source tool that detects and prevents risky software dependencies by inspecting changes in real time at pull requests.
Black Duck named leader in Gartner Magic Quadrant for eighth year
Thu, 16th Oct 2025
#
devops
#
application security
#
apm
Black Duck has been named a Leader in Gartner's 2025 Magic Quadrant for Application Security Testing for the eighth consecutive year, leading in execution.
Checkmarx named leader in IDC MarketScape ASPM 2025 report
Fri, 12th Sep 2025
#
application security
#
risk & compliance
#
ai
Checkmarx has been named a leader in the IDC MarketScape ASPM 2025 report for its AI-driven, developer-focused application security platform.
Black Duck launches GitHub app for automated security scans
Wed, 20th Aug 2025
#
devops
#
application security
#
devsecops
Black Duck has launched a GitHub app to automate security scans, helping development teams identify vulnerabilities early and streamline application security.
Evolt & EGYM alliance ushers new era in fitness tech
Tue, 2nd Apr 2024
#
fitness
#
global expansion
#
fitness tracker
Evolt, a body composition analytics firm, has forged a strategic partnership with digital fitness company EGYM to integrate its technology into the fitness sector.
GitGuardian introduces tool to strengthen codebase health
Fri, 29th Mar 2024
#
application security
#
it automation
#
devsecops
Cybersecurity firm GitGuardian has introduced a Software Composition Analysis module, designed to enhance the health of organisations' codebases by automating detection and remediation of vulnerabilities in software dependencies.
CAST Highlight shines in G2's Winter 2024 software intelligence rankings
Thu, 4th Jan 2024
#
saas
#
modernisation
#
agility
CAST Highlight receives significant recognition in G2's Winter 2024 Reports, gaining high rankings in SCA and Application Portfolio Management, alongside being praised for its user-centric design.