The flaw could allow attackers to bypass Nuclei’s template signature verification process to inject malicious codes into host systems. A widely popular open-source tool, Nuclei, used for scanning ...

ActiveState, a global leader in open source language solutions and secure software supply chain management, today announced ...

Google has released OSV-Scanner, an open-source front-end interface to the Open Source Vulnerability (OSV) database. The OSV database is a distributed, open-source database that stores vulnerability ...

Tenable Network Security, the sponsor for the widely used open source vulnerability scanning tool Nessus for discovering weaknesses in software, plans to commercialize Nessus in a major upgrade to be ...

Trivy is now one tool for all cloud native scanning needs including source code, repositories, images, artifact registries, Infrastructure as Code (IaC) templates and Kubernetes environments. With ...

Quick Summary Struggling to keep track of security gaps across your systems and applications? Discover the top seven vulnerability scanning tools of 2025 that can help you identify, prioritise, and ...

Google has released a new free tool that allows open-source developers to more easily access vulnerability information relevant to their projects. The Go-based tool — called OSV-Scanner — provides an ...

Despite their reputation for sometimes being substandard, open-source security products are becoming more technologically sophisticated, on par with some of the most advanced data security products on ...

Dozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls. A now ...

BOSTON and TEL AVIV, Israel, July 31, 2025 (GLOBE NEWSWIRE) -- Aqua Security, the pioneer in cloud native security and primary maintainer of Trivy, today announced that Root has joined the Trivy ...

With the added features, Enforce can now generate and ingest software bills of materials for container images, automate vulnerability scans and generate reports. Software supply chain security ...