Developer Productivity Engineering provides a framework to boost code production and creativity — and can help to improve application security.

Developer Productivity Engineering provides a framework to boost code production and creativity — and can help to improve application security.

RL has discovered a loophole on VS Code Marketplace that allows threat actors to reuse legitimate, removed package names for malicious purposes. 

ESET researchers have discovered malware that taps into OpenAI’s large language model to assist in ransomware attacks.

With attacks on popular repositories on the rise, PyPI has moved to head off a common technique for duping developers. Here’s what it accomplishes — and where there’s room for improvement.

Purism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.

Software Supply Chain Security, Threat Intelligence, and Threat Analysis Solutions

A campaign against top maintainers implanted malware in open source packages with more than 2 billion monthly downloads. The target: crypto wallets.

RL’s Ransomware Feed data from the first half of the year shows a jump in early-stage threats like infostealers — and a drop in Trojans.

Learn how ActiveState and ReversingLabs integration automates secure component sourcing, secure software releases, remediation guidance, and policy enforcement.