all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

PREPRINT: Can the OpenSSF Scorecard be used to measure the security posture of npm and PyPI?. (arXiv:2208.03412v2 [cs.CR] UPDATED)

Add to bookmarks
Aug. 15, 2022, 1:20 a.m. | Nusrat Zahan, Parth Kanakiya, Brian Hambleton, Shohanuzzaman Shohan, Laurie Williams

cs.CR updates on arXiv.org arxiv.org

The OpenSSF Scorecard project is an automated tool to monitor the security
health of open source software. We used the tool to understand the security
practices and gaps in npm and PyPI ecosystems and to confirm the applicability
of the Scorecard tool.

npm openssf posture pypi scorecard security security posture

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Mixtures of Gaussians are Privately Learnable with a Polynomial Number of Samples 7 hours ago | arxiv.org
alpha arxiv cs.cr cs.ds +16
Image Hijacks: Adversarial Images can Control Generative Models at Runtime 7 hours ago | arxiv.org
adversarial algorithm arxiv can +20
Differentially-Private Data Synthetisation for Efficient Re-Identification Risk Control 7 hours ago | arxiv.org
addition arxiv can computational +21
Decoding the MITRE Engenuity ATT&CK Enterprise Evaluation: An Analysis of EDR Performance in Real-World Environments 7 hours ago | arxiv.org
analysis and response apt arxiv +27
Okapi: Efficiently Safeguarding Speculative Data Accesses in Sandboxed Environments 7 hours ago | arxiv.org
architecture arxiv attacks can +12
Watch Out! Simple Horizontal Class Backdoors Can Trivially Evade Defenses 7 hours ago | arxiv.org
activates arxiv attacks backdoor +20
Every Breath You Don't Take: Deepfake Speech Detection Using Breath 7 hours ago | arxiv.org
aid arxiv cs.cr cs.mm +16
Perturbing Attention Gives You More Bang for the Buck: Subtle Imaging Perturbations That Efficiently Fool … 7 hours ago | arxiv.org
arxiv attention challenges cs.cr +13
Saving proof-of-work by hierarchical block structure 7 hours ago | arxiv.org
algorithm arxiv bitcoin block +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cyber Threat Analyst

@ Peraton | Morrisville, NC, United States
View on infosec-jobs.com

Kyndryl Offensive Security Professional - Threat-Led Penetration Testing (TLPT) and Red Teaming

@ Kyndryl | Sao Paulo (KBR51645) WeWork Office
View on infosec-jobs.com

Consultant en Cyber Sécurité - Spécialiste PKI H/F

@ Devoteam | Levallois-Perret, France
View on infosec-jobs.com

Cloud Security Architect - Advisor (Remote)

@ Fannie Mae | Reston, VA, United States
View on infosec-jobs.com

OT Cybersecurity Engineer

@ SBM Offshore | Bengaluru, IN, 560071
View on infosec-jobs.com
View more jobs