All you can read about

Codenotary Trustcenter blog about Software Supply Chain Security, Software Bill of Materials, Code Signing, Trust enforcement, VDR, VEX and SLSA levels.

This is a search field with an auto-suggest feature attached.

There are no suggestions because the search field is empty.

SLSA

The 3CX Breach: A Wake-up Call on the Risks of Software Supply Chain Attacks

SLSA

Codenotary Joins the Snyk Technology Alliance Partner Program

Secure your software supply chain with Trustcenter using GitHub Actions

Trustcenter

Secure your software supply chain with Trustcenter

Trustcenter

Old Software Bugs exploited by Majority of Ransomware Attacks last Year

General

CISA Director urges mentality shift in regards to cybersecurity

SLSA

Trustcenter/Teams - a software component security and risk analysis platform

General

Why SBOM is important for software development

Codenotary among three companies named IDC Innovator

SLSA

The advantages of DevSecOps compared to traditional Security Operations Centers

General

Monitoring certificate expiration with Prometheus

Trustcenter

Trustcenter helps complying with NIST SSDF

Trustcenter

Apps Need to Provide Their Own SBOM

Trustcenter

Ongoing massive phishing software attacks

SLSA

TrueSBOM for Serverless Applications

SLSA

One year has passed and Log4Shell is more dangerous than ever before

General

Your Application Development Organization Inadvertently Leaves Door Open for Hackers

Trustcenter

When hidden Java packages put your company at risk

General

Introducing the Developer’s Guide to SBOMs

Trustcenter

WHAT IS AN SBOM BILL OF MATERIALS AND WHAT DOES IT DO?

Metrics and Logs

Save energy without reducing VM performance in your VMware vSphere cluster

Trustcenter

Rust-based Ransomware can hit anywhere including Windows, Linux and VMware ESXi

General

A Jenkins shared library to execute commands with vcn, our CLI tool

General

A GitHub Action to download and use our enterprise tool vcn in CI

General

Serious security vulnerabilities in Atlassian Confluence affect many organizations

General

Notarizing Container images using JFrog’s API

General

Always know about the dependency of your Pods – here comes SBOM operator for Kubernetes

General

The rise of supply chain attacks

General

Dirty Pipe, a new vulnerability

General

Get a Handle on Your Software Supply Chain

General

Use Google Sheets Apps Script to track Open Source GitHub and Docker statistics

General

TechStrong TV interviews Dennis Zimmer about securing Software Supply Chain

General

Immutability Specialist Codenotary Now Offers Trusted Software Supply Chain Assurance in a Fast, Easy, Inexpensive Cloud

Trustcenter

Detect unwanted dependencies in your software like versions of faker.js or colors.js

Trustcenter

Log4j, the brick movie

Trustcenter

Apache Log4j vulnerability shows the importance of SBOMs

tfir.io

Risks Of Not Understanding The Software Bill Of Materials

SLSA

Introducing the SLSA framework

Trustcenter

Software_Bill_of_Materials_SBoM_what_it_is_and_why_it_is_so_important

Trustcenter

accenture-falls-victim-to-ransomware

Trustcenter

installing-immutable-ledger-on-almalinux

General

sbom-executive-order

General

vmware-vsphere-why-checking-numa-configuration-is-so-important-3

General

when-digital-certificates-fail

General

immutable-infrastructure

General

Secured-Github-Actions

Trustcenter

Jenkins Build Deployment Pipeline: A How To for Ensuring Integrity

General

the-trusted-CICD-pipeline

General

solarwinds-sunburst

Metrics and Logs

ubuntu-how-to-use-intel-optane-memory-for-ssd-caching

Metrics and Logs

enlarge-a-disk-and-partition-of-any-linux-vm-without-a-reboot

Metrics and Logs

bug-or-digitally-signed-the-weird-world-of-digital-certificates

Metrics and Logs

use-github-actions-for-validated-builds

Metrics and Logs

fully-trusted-gitlab-pipeline

Metrics and Logs

validated-builds-using-circleci-ci-cd

Metrics and Logs

github-actions-are-live

Metrics and Logs

vmware-vsphere-install-centos-8-and-run-minishift

Metrics and Logs

powershell-file-trust

Metrics and Logs

securing-your-azure-devops-ecosystem-jenkins-and-kubernetes-aks

Metrics and Logs

securing-your-azure-devops-ecosystem-jenkins-and-kubernetes-aks-using-Codenotary-part-1

Metrics and Logs

notarizing-for-the-first-time-report-from-the-frontline-customer-feedback

Metrics and Logs

the-cumbersome-nature-of-gpg-vs-an-easy-to-use-blockchain-alternative

Metrics and Logs

gpg-certificates-maybe-permanently-poisoned-but-blockchain-offers-a-strong-alternative

Metrics and Logs

docker-swarm-monitoring

Metrics and Logs

install-and-use-docker-swarm

Metrics and Logs

using-blockchain-to-protect-against-wire-fraud-scams

Metrics and Logs

protect-yourself-with-blockchain-from-canonical-like-github-attacks

Metrics and Logs

guarantee-trust-of-your-companys-deployed-devops-assets-with-blockchain

Metrics and Logs

bulletproof-your-javascript-app-integrity-for-free-with-blockchain-integration-available-on-npm

Metrics and Logs

storing-sensitive-customer-data-in-a-blockchain-based-solution

Metrics and Logs

verify-digital-asset-integrity-against-the-blockchain-for-free-using-golang

Metrics and Logs

recover-kubectl-config-running-kubernetes-on-ubuntu

Metrics and Logs

going-beyond-digital-certificates-with-devops-asset-integrity-management

Metrics and Logs

installing-a-openshift-test-environment-using-minishift

Metrics and Logs

410m-microservices-security-market-validation-and-the-cicd-pipeline

Metrics and Logs

zombie-infestation-software-developer-tools-the-ms-visual-studio-attack

Metrics and Logs

Find & Continuously monitor your Kubernetes-environment for unwanted Docker images

Metrics and Logs

code-signing-certificates-journey-of-pain-3-when-even-signing-isnt-enough

Metrics and Logs

can-gpg-secure-the-software-industry

Metrics and Logs

How to Avoid VMWare ESXi Timedrift?

Metrics and Logs

debugging-crashed-kubernetes-container

Metrics and Logs

granularity-of-digital-certificates

Metrics and Logs

Extremely Useful Docker Commands

Metrics and Logs

avoid-the-digital-and-code-signing-certificates-journey-of-pain

Metrics and Logs

resize-photon-os-system-disk

Metrics and Logs

vsan-hybrid-vs-all-flash

Metrics and Logs

VMware default usernames and passwords

Metrics and Logs

software-defined-management-dashboards-the-opvizor-solution

Metrics and Logs

vm-snapshot-alerts

Metrics and Logs

vmware-cpu-co-stop-and-sql-server-performance

Metrics and Logs

vsphere-ha-waiting-for-cluster-election-to-complete-operation-timed-out

Metrics and Logs

static-routes-for-vmware-esxi-vmkernel-ports

Metrics and Logs

vmware-targets-devops

Metrics and Logs

4-best-practices-for-software-testing-with-vmware

Metrics and Logs

vmware-vcenter-server-appliance-vcsa-filesystem-is-damaged

Metrics and Logs

how-to-make-vmware-faster

Metrics and Logs

find-the-esxi-that-owns-the-vmdk-lock-or-other-file-lock-on-a-vmfs-datastore

Metrics and Logs

vmware-cve-2015-3456-aka-venom-vulnerability

Metrics and Logs

Fix VM snapshot in VMware vSphere when file lock cannot be released

Metrics and Logs