Betterleaks, a new open-source secrets scanner to replace Gitleaks

A new open-source tool called Betterleaks can scan directories, files, and git repositories and identify valid secrets using default or customized rules.
Bleeping Computer

Apiiro unveils free scanner to detect malicious code merges

Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks. The two ...
Dark Reading

Code Scanner by Piiano Helps Enterprises Prevent Data Leaks Proactively

TEL AVIV, Israel, Nov. 29, 2023 (GLOBE NEWSWIRE) -- Piiano, the leading data protection company, today announced Piiano Flows, the industry’s first privacy-centric static code analyzer. The company ...
Computerworld

How to choose and use source code analysis tools

The high cost of finding and patching application flaws is well known. Wouldn’t it be cheaper to write secure code in the first place? One of the fastest growing areas in the software security ...
Dark Reading

CISA's New Log4j Scanner Aims to Find Vulnerable Apps

The Cybersecurity and Infrastructure Security Agency (CISA) has released an open source scanner that businesses can use to find Web services vulnerable to Log4j remote code execution vulnerabilities ...
Krebs on Security

‘Trojan Source’ Bug Threatens the Security of All Code

Virtually all compilers — programs that transform human-readable source code into computer-executable machine code — are vulnerable to an insidious attack in which an adversary can introduce targeted ...