Source Code

Syntax, LLC Announces Launch of Stratified LargeCap ESG Index

Saturday, August 1, 2020 - 2:59pm

Syntax, LLC is pleased to announce the launch of the Syntax Stratified LargeCap ESG Index (Index Symbol: SYESG) on July 31, 2020.

Key Points: 
  • Syntax, LLC is pleased to announce the launch of the Syntax Stratified LargeCap ESG Index (Index Symbol: SYESG) on July 31, 2020.
  • The Stratified LargeCap ESG Index applies Syntaxs innovative Stratified Weight methodology and patented Functional Information System (FIS) technology to control for business risk and identify material ESG metrics.
  • The Stratified LargeCap ESG index follows the Syntax Social Core Indices that launched in December 2015, providing multiple Stratified Weight options for responsible investing.
  • The Syntax Stratified ESG Index is a product of Syntax Indices, a division of Syntax, LLC.

Intel, MIT and Georgia Tech Deliver Improved Machine-Programming Code Similarity System

Wednesday, July 29, 2020 - 2:00pm

Whats New: Today, Intel unveiled a new machine programming (MP) system in conjunction with Massachusetts Institute of Technology (MIT) and Georgia Institute of Technology (Georgia Tech).

Key Points: 
  • Whats New: Today, Intel unveiled a new machine programming (MP) system in conjunction with Massachusetts Institute of Technology (MIT) and Georgia Institute of Technology (Georgia Tech).
  • The system, machine inferred code similarity (MISIM), is an automated engine designed to learn what a piece of software intends to do by studying the structure of the code and analyzing syntactic differences of other code with similar behavior.
  • This complexity, paired with a shortage of programmers who can code at an expert level across multiple architectures, spotlights a need for new development approaches.
  • Moreover, MISIM can do all of this without using a compiler, which translates human-readable source code into computer-executable machine code.

Bank of England Supports New Software Quality Assurance Benchmarks

Thursday, July 2, 2020 - 8:00am

QA VectorAnalytics is a unique platform, said QA Media, that meets a critical need; financial services are fundamentally dependent on software systems and major outages have illustrated the need for inspectable, agreed standards for software quality assurance and testing.

Key Points: 
  • QA VectorAnalytics is a unique platform, said QA Media, that meets a critical need; financial services are fundamentally dependent on software systems and major outages have illustrated the need for inspectable, agreed standards for software quality assurance and testing.
  • "The Bank of England is pleased to be a partner in this project, especially as it has been created by a UK-based information company that has an international customer base," said Jordan Daniel, Domain Lead, Quality Assurance and Productivity at the Bank of England.
  • "While our participation in the project is partly aimed at benchmarking our own internal software development processes, we also see a growing need for benchmarks for software quality and resilience that can be shared by banks and other financial firms.
  • The firm is an independent information, research and international events company based in the City of London, connecting buyers and sellers in the marketplace for software quality assurance services.

Bank of England Supports New Software Quality Assurance Benchmarks

Thursday, July 2, 2020 - 8:00am

QA VectorAnalytics is a unique platform, said QA Media, that meets a critical need; financial services are fundamentally dependent on software systems and major outages have illustrated the need for inspectable, agreed standards for software quality assurance and testing.

Key Points: 
  • QA VectorAnalytics is a unique platform, said QA Media, that meets a critical need; financial services are fundamentally dependent on software systems and major outages have illustrated the need for inspectable, agreed standards for software quality assurance and testing.
  • "The Bank of England is pleased to be a partner in this project, especially as it has been created by a UK-based information company that has an international customer base," said Jordan Daniel, Domain Lead, Quality Assurance and Productivity at the Bank of England.
  • "While our participation in the project is partly aimed at benchmarking our own internal software development processes, we also see a growing need for benchmarks for software quality and resilience that can be shared by banks and other financial firms.
  • The firm is an independent information, research and international events company based in the City of London, connecting buyers and sellers in the marketplace for software quality assurance services.

Synopsys Study Shows that Ninety-One Percent of Commercial Applications Contain Outdated or Abandoned Open Source Components

Tuesday, May 12, 2020 - 2:05pm

The report highlights trends and patterns in open source usage within commercial applications, and provides insights and recommendations to help organizations better manage open source risk from a security, license compliance, and operational perspective.

Key Points: 
  • The report highlights trends and patterns in open source usage within commercial applications, and provides insights and recommendations to help organizations better manage open source risk from a security, license compliance, and operational perspective.
  • The 2020 OSSRA report reaffirms the critical role that open source plays in today's software ecosystem, revealing that effectively all (99%) of the codebases audited over the past year contain at least one open source component, with open source comprising 70% of the code overall.
  • Ninety-nine percent of codebases contain at least some open source, with an average of 445 open source components per codebasea significant increase from 298 in 2018.
  • Sixty-eight percent of codebases contained some form of open source license conflict, and 33% contained open source components with no identifiable license.

SecureLink Inks Distribution Agreement with ShiftLeft, the Fastest Application Security Platform

Monday, January 27, 2020 - 7:00am

ShiftLeft is the fastest and most accurate application security testing product in the industry.

Key Points: 
  • ShiftLeft is the fastest and most accurate application security testing product in the industry.
  • Combining our fastest and most accurate code analysis with the top application security advisory will provide our customers with the most advanced application security solution.
  • ShiftLeft is a continuous application security platform, purpose-built for the modern software development life cycle.
  • This combination of runtime-informed code analysis and code-informed runtime protection delivers the most accurate, automated, and comprehensive application security solution.

ShiftLeft and CircleCI Strengthen DevOps Security by Inserting Code Analysis as Far Left as Developer Pull Requests

Wednesday, December 4, 2019 - 2:00pm

ShiftLeft Inc. , an innovator in automated application security, today announced a partnership and deep integration with CircleCI that enables organizations to insert security directly into developer pull requests from code repositories.

Key Points: 
  • ShiftLeft Inc. , an innovator in automated application security, today announced a partnership and deep integration with CircleCI that enables organizations to insert security directly into developer pull requests from code repositories.
  • ShiftLeft Inspect is the first static application security testing (SAST) vendor to partner with CircleCI to provide these capabilities.
  • Pull requests represent a critical phase for developers, as it is the phase in which new individual developer code is integrated into the overall codebase.
  • The partnership and integration enables CircleCI users to run ShiftLeft Inspect on CircleCI builds and pull requests from any code repository integrated with CircleCI.

CISQ Begins Creation of New Standard to Address Software Quality in Model-Based Systems Engineering

Monday, November 18, 2019 - 2:00pm

NEEDHAM, Mass., Nov. 18, 2019 /PRNewswire-PRWeb/ --The Consortium for Information and Software Quality , (CISQ) an IT industry leadership group that develops standards for automating software quality measurement, today announced a call for participation to help it create a new specification to address software quality within model-based systems engineering (MBSE): Quality Measures for MBSE .

Key Points: 
  • NEEDHAM, Mass., Nov. 18, 2019 /PRNewswire-PRWeb/ --The Consortium for Information and Software Quality , (CISQ) an IT industry leadership group that develops standards for automating software quality measurement, today announced a call for participation to help it create a new specification to address software quality within model-based systems engineering (MBSE): Quality Measures for MBSE .
  • We believe MBSE and this related quality initiative will help with the software quality aspects of MBSE developed systems, and improve reliability, performance and security," said CISQ Executive Director Dave Norton.
  • Many standards exist during the coding stage, but this new standard is designed to detect software quality errors within the model, not the code.
  • The Consortium for Information and Software Quality (CISQ) is an industry leadership group that develops international standards for automating the measurement of software size and structural quality from the source code.

Veracode’s 10th State of Software Security Report Finds Organizations Reduce Rising ‘Security Debt’ via DevSecOps, Special Sprints

Tuesday, October 22, 2019 - 1:30pm

SOSS Volume 10 sheds light on best practices for organizations to make security habitual and lighten their security debt load, including frequent testing and a plan for tackling this debt.

Key Points: 
  • SOSS Volume 10 sheds light on best practices for organizations to make security habitual and lighten their security debt load, including frequent testing and a plan for tackling this debt.
  • The report reveals that the longer flaws stick around, the chances they will be corrected diminish, which adds to an organizations security debt.
  • Security debt defined as aging and accumulating flaws in software is emerging as a significant pain point for organizations across industries.
  • Organizations can also reduce security debt by creating security checklists for developers for all new features and scanning codebases following each nightly build.

Carolina Biological Supply Company Minimizes Environmental Footprint by Reducing Plastic Use and Designing Reusable Kits

Tuesday, October 15, 2019 - 1:00pm

Carolina decreased its environmental footprint by encouraging reuse of plastic parts in its science kits and making chemistry products safer for students and teachers.

Key Points: 
  • Carolina decreased its environmental footprint by encouraging reuse of plastic parts in its science kits and making chemistry products safer for students and teachers.
  • Every material Carolina selects for manufacturing its products is tested for safety, durability, reusability, and ability to perform the intended task.
  • In developing science kits, Carolina reviews how they can have the least environmental impact.
  • When choosing Carolina products, teachers can be confident that the company considers environmental impact and classroom safety, and delivers its items in the closest-fitting packaging possible.