GitHub has officially launched a new Security Lab with an aim to secure open-source software. The objective is to “bring together security researchers, maintainers, and companies across the industry who share our belief that the security of open source is important for everyone,” the Microsoft-owned code repository platform said. To that effect, the company is making CodeQL freely available for anyone to find vulnerabilities in open-source code. It’s also launching GitHub Advisory Database, a public database of security advisories created on GitHub. CodeQL, the sematic code analysis tool used to spot exploits in code, comes from its acquisition of Semmle…
This story continues at The Next Web
Or just read more coverage about: Security,GitHub
Friday, 15 November 2019
