Tag
sca-security
Safeguard articles tagged "sca-security" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Vulnerability Management
Reachability-based vulnerability prioritization (Polaris ...
Reachability analysis cuts CVE noise by confirming which vulnerabilities are exploitable. Here's how Black Duck's Polaris reachability compares to Safeguard's pipeline-native approach.
Jun 15, 20268 min read
Supply Chain
SCA Security: What Software Composition Analysis Actually Catches
SCA security scans the open source dependencies that make up most of your codebase, finding known CVEs, risky licenses, and malicious packages. Here is what it catches — and what it does not.
May 27, 20257 min read