Microsoft buys Semmle in a bid to bulk out GitHub security
Source:-devclass.com Microsoft has boosted its security play via GitHub by buying code analysis firm Semmle in a pairing the firms hope will make hunting and fixing vulnerabilities as easy as a pull request. Semmle has two main products, QL, a code analysis engine for product security teams to quickly find zero-days and variants of critical vulnerabilities, and LGTM aimed at development teams to identify vulnerabilities before they can creep into production. In a blog post, GitHub CEO Nat Friedman explained, “Semmle’s
Read more