software development practices – Experimental News Clipping Site

Anchore: Anchore Assessed “Awardable” for Department of Defense Work in the P1 Solutions Marketplace

Oct 9, 2025

—

by

Source URL: https://anchore.com/news/anchore-assessed-awardable-for-department-of-defense-work-in-the-p1-solutions-marketplace/ Source: Anchore Title: Anchore Assessed “Awardable” for Department of Defense Work in the P1 Solutions Marketplace Feedly Summary: SANTA BARBARA, CA – October 9, 2025 – Anchore, a leading provider of software supply chain security solutions, today announced that it has achieved “Awardable” status through the Platform One (P1) Solutions Marketplace. The…

The Register: JetBrains wants to train AI models on your code snippets

Oct 1, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/10/01/jetbrains_wants_your_code_to_train_ai/ Source: The Register Title: JetBrains wants to train AI models on your code snippets Feedly Summary: Dangles free product licenses in return for code-related data for its training IDE and developer tools biz JetBrains believes training AI models on public datasets is insufficient, and is offering free product licenses to organizations that…

Microsoft Security Blog: XCSSET evolves again: Analyzing the latest updates to XCSSET’s inventory

Sep 25, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/09/25/xcsset-evolves-again-analyzing-the-latest-updates-to-xcssets-inventory/ Source: Microsoft Security Blog Title: XCSSET evolves again: Analyzing the latest updates to XCSSET’s inventory Feedly Summary: Microsoft Threat Intelligence has uncovered a new variant of the XCSSET malware, which is designed to infect Xcode projects, typically used by software developers building Apple or macOS-related applications. The post XCSSET evolves again: Analyzing…

The Register: Senator blasts Microsoft for ‘dangerous, insecure software’ that helped pwn US hospitals

Sep 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/11/wyden_microsoft_insecure/ Source: The Register Title: Senator blasts Microsoft for ‘dangerous, insecure software’ that helped pwn US hospitals Feedly Summary: Ron Wyden urges FTC to probe failure to secure Windows after attackers used Kerberoasting to cripple Ascension Microsoft is back in the firing line after US Senator Ron Wyden accused Redmond of shipping “dangerous,…

Slashdot: Hackers Hijack npm Packages With 2 Billion Weekly Downloads in Supply Chain Attack

Sep 8, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://it.slashdot.org/story/25/09/08/1843235/hackers-hijack-npm-packages-with-2-billion-weekly-downloads-in-supply-chain-attack?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Hackers Hijack npm Packages With 2 Billion Weekly Downloads in Supply Chain Attack Feedly Summary: AI Summary and Description: Yes Summary: The text reports on a significant supply chain attack that has compromised NPM packages, leading to malware injection into widely downloaded packages. This incident is notable for its…

Docker: Secure by Design: A Shift-Left Approach with Testcontainers, Docker Scout, and Hardened Images

Aug 28, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.docker.com/blog/a-shift-left-approach-with-docker/ Source: Docker Title: Secure by Design: A Shift-Left Approach with Testcontainers, Docker Scout, and Hardened Images Feedly Summary: In today’s fast-paced world of software development, product teams are expected to move quickly: building features, shipping updates, and reacting to user needs in real-time. But moving fast should never mean compromising on quality…

Embrace The Red: Cline: Vulnerable To Data Exfiltration And How To Protect Your Data

Aug 27, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://embracethered.com/blog/posts/2025/cline-vulnerable-to-data-exfiltration/ Source: Embrace The Red Title: Cline: Vulnerable To Data Exfiltration And How To Protect Your Data Feedly Summary: Cline is quite a popular AI coding agent, according to the product website it has 2+ million downloads and over 47k stars on GitHub. Unfortunately, Cline is vulnerable to data exfiltration through the rendering…

Docker: Docker @ Black Hat 2025: CVEs have everyone’s attention, here’s the path forward

Aug 15, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.docker.com/blog/docker-black-hat-2025-secure-software-supply-chain/ Source: Docker Title: Docker @ Black Hat 2025: CVEs have everyone’s attention, here’s the path forward Feedly Summary: CVEs dominated the conversation at Black Hat 2025. Across sessions, booth discussions, and hallway chatter, it was clear that teams are feeling the pressure to manage vulnerabilities at scale. While scanning remains an important…

Simon Willison’s Weblog: simonw/codespaces-llm

Aug 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Aug/13/codespaces-llm/#atom-everything Source: Simon Willison’s Weblog Title: simonw/codespaces-llm Feedly Summary: simonw/codespaces-llm GitHub Codespaces provides full development environments in your browser, and is free to use with anyone with a GitHub account. Each environment has a full Linux container and a browser-based UI using VS Code. I found out today that GitHub Codespaces come with…

Anchore: Accelerate & Secure: Optimizing Your Software Supply Chain with DevSecOps

Jul 29, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://webinars.techstronglearning.com/accelerate-secure-optimizing-your-software-supply-chain-with-devsecops Source: Anchore Title: Accelerate & Secure: Optimizing Your Software Supply Chain with DevSecOps Feedly Summary: The post Accelerate & Secure: Optimizing Your Software Supply Chain with DevSecOps appeared first on Anchore. AI Summary and Description: Yes Summary: The text discusses optimizing the software supply chain using DevSecOps practices, emphasizing the importance of…

Tag: software development practices