Safeguard
Tag

vulnerability-management

Safeguard articles tagged "vulnerability-management" — guides, analysis, and best practices for software supply chain and application security.

635 articles

Container Security

Reducing CVEs in container base images

Base images inherit hundreds of OS-level CVEs your app never touches. Here's how reachability analysis and minimal bases cut real risk, not just counts.

Jun 21, 20267 min read
Compliance

Audit Preparation for AppSec programs

Veracode scans your code, but auditors want proof: which artifact shipped, which SBOM covers it, who approved every exception. Here's what closes that gap.

Jun 19, 20267 min read
Strategy

Cost-Per-Verified-Finding: How Agentic AI Breaks Vulnerability Triage

Agentic AI can generate findings faster than any team can read them. The metric that survives that flood isn't cost-per-finding, it's cost-per-verified-finding. Here's why verification is now the bottleneck.

Jun 18, 20267 min read
Compliance

HIPAA application security validation testing

A 2025 HHS rule proposes fixed testing cadences for HIPAA. Heres what security testing requirements demand now, and how Safeguard closes the gaps Veracode leaves.

Jun 18, 20268 min read
Compliance

DORA (Digital Operational Resilience Act) and code-level ...

DORA turns code-level and open-source risk into a regulatory obligation. Here's what dora compliance software security actually requires, and where tools like Veracode fall short.

Jun 18, 20267 min read
Application Security

Breaking free from alert fatigue in AppSec

Veracode-style scanners flood AppSec teams with thousands of unranked alerts. Here's why appsec alert fatigue happens, what it costs, and how reachability-based triage fixes it.

Jun 16, 20268 min read
Application Security

Securing AWS Lambda functions

A practical guide to AWS Lambda security best practices: IAM scoping, dependency risk, secrets handling, and runtime detection for serverless apps.

Jun 16, 20267 min read
Vulnerability Management

Reachability-based vulnerability prioritization (Polaris ...

Reachability analysis cuts CVE noise by confirming which vulnerabilities are exploitable. Here's how Black Duck's Polaris reachability compares to Safeguard's pipeline-native approach.

Jun 15, 20268 min read
Buyer's Guides

Software Composition Analysis Tools: buyer's checklist

A practical SCA buyer's checklist comparing Safeguard and Black Duck on detection method, CI/CD fit, remediation speed, and license policy enforcement.

Jun 14, 20267 min read
Vulnerability Management

AppSec program consolidation: reducing tool sprawl

AppSec tool sprawl is a consolidation problem, not just a vendor-count problem. A look at Black Duck's product lineage versus Safeguard's unified scanning pipeline.

Jun 13, 20268 min read
AI Security

Can AI write secure code? Auditing AI-generated code

AI writes code fast, but studies from 2021 to 2025 show it also reproduces insecure patterns and invents fake dependencies. Here's what the data says.

Jun 13, 20267 min read
Application Security

Enterprise AppSec risk management at scale

Black Duck built its platform on decades of license-compliance SCA and acquired tools. Safeguard built a unified, reachability-aware supply-chain risk platform from day one.

Jun 13, 20267 min read
vulnerability-management (Page 9) — Safeguard Blog