PRevent: Open-source tool to detect malicious code in pull requests

Apiiro security researchers have released open source tools that can help organizations detect malicious code as part of their software development lifecycle: PRevent (a scanner for pull requests), and a malicious code detection ruleset for Semgrep and Opengrep static code analysis tools. PRevent in action (Source: Apiiro) The tools work by detecting two anti-patterns the researchers pinpointed after analyzing thousands of malicious code instances in repositories and packages: obfuscated / unreadable source code, and dynamic … More → The post PRevent: Open-source tool to detect malicious code in pull requests appeared first on Help Net Security.
http://news.poseidon-us.com/TJ5D9Y

PRevent: Open-source tool to detect malicious code in pull requests

Like this:

Related

More Posts

How artificial intelligence is energizing information technology

Security and privacy concerns challenge public sector’s efforts to modernize

Optimization is a biproduct of Army’s network consolidation

Optimization is a biproduct of Army’s network consolidation

Optimization is a biproduct of Army’s network consolidation

Connolly wants clarification of Elon Musk’s role in the Trump administration

Connolly wants clarification of Elon Musk’s role in the Trump administration

A Biden appointee sues to keep her job under Trump

A Biden appointee sues to keep her job under Trump

New AI system accurately maps urban green spaces, exposing environmental divides

Share this:

Like this:

Related

More Posts