Backslash Security announced the findings of its GPT-4 developer simulation exercise, designed and conducted by the Backslash Research Team, to identify security issues associated with LLM-generated code. The Backslash platform offers several core capabilities that address growing security concerns around AI-generated code, including open source code reachability analysis and phantom package visibility capabilities.
Mirantis announced updates to Mirantis Container Runtime that adds support for Windows Server 2022, as well as Mirantis Secure Registry with support for Synopsys scanner and improved command line logging.
“By supporting Windows Server 2022 for our Container Runtime and Secure Registry we ensure that our customers can continue to include security as an integral part of the application development and lifecycle management process – not an afterthought,” said Shaun O’Meara, field chief technology officer, Mirantis. “Together, these products provide a highly-secure platform for the software supply chain allowing customers to feel confident in the security status of their container ecosystem.”
Mirantis Container Runtime (MCR), which activates and manages the components required to run containers, adds support for Windows 2022 due to popular demand. The high-level runtime at the heart of Mirantis Kubernetes Engine can operate Swarm and Kubernetes containers efficiently on any substrate. It is based on containerd, the Cloud Native Computing Foundation (CNCF) core container runtime.
Mirantis Secure Registry (MSR) provides an upgrade of the integrated Synopsys scanner to version 2022.6.0 and improves command line logging. MSR automates the security of the software supply chain by checking for latest-known vulnerabilities in order to securely store, share, and manage images in private container registries and integrates with CI/CD to help accelerate secure application testing and delivery. Users have the choice of scanning manually or automatically on a scheduled basis.
Free trial software for MCR and MSR are available for download.
Industry News
Azul announced that Azul Intelligence Cloud, Azul’s cloud analytics solution -- which provides actionable intelligence from production Java runtime data to dramatically boost developer productivity -- now supports Oracle JDK and any OpenJDK-based JVM (Java Virtual Machine) from any vendor or distribution.
F5 announced new security offerings: F5 Distributed Cloud Services Web Application Scanning, BIG-IP Next Web Application Firewall (WAF), and NGINX App Protect for open source deployments.
Code Intelligence announced a new feature to CI Sense, a scalable fuzzing platform for continuous testing.
WSO2 is adding new capabilities for WSO2 API Manager, WSO2 API Platform for Kubernetes (WSO2 APK), and WSO2 Micro Integrator.
OpenText™ announced a solution to long-standing open source intake challenges, OpenText Debricked Open Source Select.
ThreatX has extended its Runtime API and Application Protection (RAAP) offering to provide always-active API security from development to runtime, spanning vulnerability detection at Dev phase to protection at SecOps phase of the software lifecycle.
Canonical announced the release of Ubuntu 24.04 LTS, codenamed “Noble Numbat.”
JFrog announced a new machine learning (ML) lifecycle integration between JFrog Artifactory and MLflow, an open source software platform originally developed by Databricks.
Copado announced the general availability of Test Copilot, the AI-powered test creation assistant.
SmartBear has added no-code test automation powered by GenAI to its Zephyr Scale, the solution that delivers scalable, performant test management inside Jira.
Opsera announced that two new patents have been issued for its Unified DevOps Platform, now totaling nine patents issued for the cloud-native DevOps Platform.
mabl announced the addition of mobile application testing to its platform.
Spectro Cloud announced the achievement of a new Amazon Web Services (AWS) Competency designation.
GitLab announced the general availability of GitLab Duo Chat.