Techly NewsGet the app

Get the latest tech news

Google Upgrades Open Source Vulnerability Scanning Tool with SCA Scanning Library


In 2022 Google released a tool to easily scan for vulnerabilities in dependencies named OSV-Scanner. "Together with the open source community, we've continued to build this tool, adding remediation features," according to Google's security blog, "as well as expanding ecosystem support to 11 program...

"OSV-SCALIBR is now the primary software composition analysis engine used within Google for live hosts, code repos, and containers. It's been used and tested extensively across many different products and internal tools to help generate SBOMs, find vulnerabilities, and help protect our users' data at Google scale. We offer OSV-SCALIBR primarily as an open source Go library today, and we're working on adding its new capabilities into OSV-Scanner as the primary CLI interface."

Get the Android app

Or read this on Slashdot

Read more on:

Photo of Google

Google

Photo of tool

tool

Photo of library

library

Related news:

News photo

Apple, Google remove TikTok from stores as app halts service in US

News photo

Poppy Playtime's going after Google

News photo

Google allows advertisers to fingerprint you for even better tracking

« Chinese hackers infiltrated US Treasury Secretary's PC — attackers had access to over 400 PCs
'Piracy Shield' Fails to Convert Pirates to Paying Subscribers, Data Suggest | Despite blocking thousands of illegal streaming sites, Italy's 'Piracy Shield' anti-piracy program has failed to deliver increased viewership for legal services like DAZN. »