Our Blog Posts

Featured Blog

Disinformation Is An Open Source Problem

The Oxford dictionary defines disinformation as “false information which is intended to mislead.” That simple definition seems to understate the problem, given the fact that ...
Read More →
All Blog Posts
Dependency Management
Software Supply Chain Security is a Dependency Management Problem
The pain of dependency management means vendors rarely update their apps leading to security issues. Learn how to automate dependency updates
Read More →
Anaconda Alternatives
ActiveState: The Anaconda Alternative for an Easier, More Secure Python
Python comes in many flavors, offering Pythonistas more than one way to accomplish their tasks. But for developers, the key criteria for making a choice ...
Read More →
ActiveState Announces Trusted Publisher Integration with PyPI
ActiveState is excited to help provide a new layer of security to Python package publishing through our integration with Trusted Publishing for PyPI. This integration ...
Read More →
Software Supply Chain Tech Debt
How To Outsource Software Supply Chain Maintenance
Open source software supply chain maintenance is the new tech debt. Learn how to minimize its costs through outsourcing.
Read More →
RedHat & Debian End Support For Python 2
Debian, CentOS & RHEL no longer support Python 2. Learn how ActiveState keeps your Python 2 app secure while automating migration to Python 3.
Read More →
Binary Scanner Risk
Why Binary Scanners Increase Cybersecurity Risk
Binary scanners provide security insight if source code is unavailable, but may result in more security risk than they resolve.
Read More →
Cybersecurity Burnout
How to Combat CyberSecurity Burnout
Cybersecurity burnout is increasing as incidents escalate. Learn how you can shift your focus from reactive to proactive with managed tools.
Read More →
SEC Cybersecurity Metrics
SEC Cybersecurity Disclosure And The Missing Metrics
SEC cybersecurity disclosures need to be based on AppSec, InfoSec and increasingly software supply chain metrics. Learn what they are.
Read More →
GitHub Fork Bomb
GitHub’s Malicious Repo Explosion & How to Avoid It
GitHub malware fork bombs poison the software supply chain at the point of source code generation. Learn how to avoid becoming a victim.
Read More →
Vendor Risk Management
The Problem With Vendor Risk Management For FinServ
Vendor risk management spikes when evaluating the cybersecurity practices of open source authors. Learn how you can better manger their risk.
Read More →
Eliminate Malware
How to Eliminate the Threat of Malware
Eliminating malware from the software supply chain means building dependencies from source code. Learn how to do it cost effectively.
Read More →
How Secure is your Python?
How Secure Should Your Python Supply Chain Be?
The security risk appetite for a project evolves over time. Learn how ActiveState's tiered approach reduces risk as requirements evolve. 
Read More →

Stay up-to-date with our mailing list

Scroll to Top