all InfoSec news
Announcing the deps.dev API: critical dependency data for secure supply chains
Malware Analysis, News and Indicators - Latest topics malware.news
Posted by Jesper Sarnesjo and Nicky Ringland, Google Open Source Security Team
Today, we are excited to announce the deps.dev API, which provides free access to the deps.dev dataset of security metadata, including dependencies, licenses, advisories, and other critical health and security signals for more than 50 million open source package versions.
Software supply chain attacks are increasingly common and harmful, with high profile incidents such as Log4Shell, Codecov, and the recent 3CX hack. The overwhelming …
3cx access api attacks codecov complexity critical data dependencies dependency deps.dev dev diligent ecosystem free google hack health high incidents licenses log4shell metadata open source open source security open source security team package profile security security team signals software software supply chain software supply chain attacks supply supply chain supply chain attacks supply chains team