TechCrunch

GitHub acquires code analysis tool Semmle

Microsoft’s GitHub today announced that it has acquired Semmle, a code analysis tool that helps developers and security researchers discover potential vulnerabilities in their code. Semmle takes a lot ...

Meet Aardvark, OpenAI’s security agent for code analysis and patching

Aardvark represents OpenAI’s entry into automated security research through agentic AI. By combining GPT-5’s language ...
TechCrunch

Sequoia backs Coana to help companies prioritise vulnerabilities using ‘code aware’ software analysis

Silicon Valley venture capital juggernaut Sequoia is backing a fledgling Danish startup to build a next-gen software composition analysis (SCA) tool, one that promises to help companies filter through ...
Business Wire

Checkmarx Accelerates Vulnerability Remediation for Open Source Code with New Software Composition Analysis Solution

RAMAT GAN, Israel--(BUSINESS WIRE)--Checkmarx, the global leader in software security solutions for DevOps, today announced the launch of Checkmarx SCA (CxSCA), the company’s new, SaaS-based software ...
CSOonline

7 top software supply chain security tools

These tools will help identify vulnerabilities and threats posed by third-party code through software composition analysis and SBOM creation. As the fallout from the Apache Log4J vulnerabilities ...
Yahoo Finance

Software Composition Analysis (SCA) Market on a Steady Growth Path: Projected to Grow Through 2030 at CAGR 7.20%

In today’s rapidly evolving digital ecosystem, Software Composition Analysis (SCA) has become a critical capability for organizations striving to secure their software supply chains, manage ...