TelcoNews New Zealand - Telecommunications news for ICT decision-makers
New Zealand

Composition Analysis Stories

Global Stories

Composition Analysis stories

JFrog named leader in Gartner's software security quadrant
Hybrid Cloud

JFrog named leader in Gartner's software security quadrant

The recognition comes as firms scramble to secure software pipelines, open-source code and AI assets against rising supply chain attacks.

By Mark Tarre 4 min read 2 days ago
Midjourney unveils full-body medical scanner & spa
Data Privacy

Midjourney unveils full-body medical scanner & spa

The project could make routine scans faster and more convenient, as Midjourney seeks approval for broader diagnostic use in the US.

By Sean Mitchell 3 min read Last week
Broadcom expands Spring security for AI threat surge
Application Security

Broadcom expands Spring security for AI threat surge

Enterprises using Spring will get faster access to validated fixes as Broadcom responds to a 1700% surge in monthly security advisories.

By Joseph Gabriel Lagonsin 4 min read Last week
Checkmarx partners with Carahsoft for public sector sales
Digital Transformation

Checkmarx partners with Carahsoft for public sector sales

Government agencies will gain wider access to application security tools as the partnership places Checkmarx products on Carahsoft's procurement channels.

By Joseph Gabriel Lagonsin 4 min read Last week
Checkmarx partners Carahsoft to expand public sector sales
Data Protection

Checkmarx partners Carahsoft to expand public sector sales

Government buyers will gain wider access to Checkmarx tools as Carahsoft opens procurement routes through reseller networks and federal contracts.

By Mark Tarre 4 min read Last week
Humanoid robots, 0-day defence among Info-Tech trends for '27
Robotics

Humanoid robots, 0-day defence among Info-Tech trends for '27

Agentic AI, zero-day surge, sovereign cloud, and humanoid robots will define IT strategy in 2027, Info-Tech Research Group warns.

By Jake MacAndrew 5 min read This month
Sonatype names new chiefs as AI demand drives growth
Data Protection

Sonatype names new chiefs as AI demand drives growth

Rising demand for secure AI software development has prompted Sonatype to expand its leadership team and scale operations globally.

By Sofiah Nichole Salivio 3 min read This month
Software Improvement Group named Gartner leader on debt
DevOps

Software Improvement Group named Gartner leader on debt

The award underscores rising demand for software tools that spot structural risk as AI coding assistants flood enterprise systems with new code.

By Mark Tarre 5 min read Last month
Socket raises USD $60 million to tackle code risks
DevOps

Socket raises USD $60 million to tackle code risks

The round values the software supply chain security company at USD $1 billion as AI coding boosts the flow of third-party code into production.

By Sofiah Nichole Salivio 3 min read Last month
ispace & Leicester pact to send spectrometer to moon
Composition Analysis

ispace & Leicester pact to send spectrometer to moon

The pact advances a UK-led instrument towards the Moon as researchers hunt for minerals, volatiles and water ice on future commercial landings.

By Sean Mitchell 4 min read Last month
Sonatype warns of surge in trusted open-source malware
Application Security

Sonatype warns of surge in trusted open-source malware

Attackers hid malware in familiar package workflows, prompting Sonatype to log 21,764 malicious open-source packages in the quarter.

By Shannon Williams 4 min read Wed, 15th Apr 2026
Cloudsmith survey finds SBOM gaps before cyber law
DevOps

Cloudsmith survey finds SBOM gaps before cyber law

Most engineering teams could struggle to meet EU Cyber Resilience Act reporting deadlines, with many still handling SBOMs manually or only after incidents.

By Catherine Knowles 4 min read Fri, 10th Apr 2026
Malware surge in open source software alarms firms
Malware

Malware surge in open source software alarms firms

Organisations remain exposed as malware in open-source packages surged in 2025, with most advisories and account takeovers reported last year.

By Kaleah Salmon 4 min read Fri, 3rd Apr 2026
AppOmni adds Heisenberg mode after LiteLLM supply attack
Virtualisation

AppOmni adds Heisenberg mode after LiteLLM supply attack

The malicious packages could leave build systems and Kubernetes clusters exposed, prompting checks across CI/CD pipelines and AI frameworks.

By Sean Mitchell 4 min read Fri, 27th Mar 2026

Stories from Other Regions

Composition Analysis stories

Australia leads in self-hosted AI use, JFrog finds
DevOps

Australia leads in self-hosted AI use, JFrog finds

The survey also found most firms still lack secrets scanning and rapid audit proof, leaving hidden credentials and compliance delays as weak spots.

By Sean Mitchell 5 min read This month
Sonatype expands Firewall to block malicious packages
Data Protection

Sonatype expands Firewall to block malicious packages

Malicious open source packages are increasingly slipping past spelling checks, exposing developer data and build systems to supply-chain attacks.

By Sean Mitchell 4 min read This month
Vulnetix named Australia's first global CVE authority
Malware

Vulnetix named Australia's first global CVE authority

Australian developers can now access free vulnerability tools as Vulnetix takes a formal role in global software flaw tracking.

By Mark Tarre 3 min read Tue, 7th Apr 2026
Avocado warns on code repository supply chain attacks
Cloud Security

Avocado warns on code repository supply chain attacks

Australian organisations face fresh risk of cloud and identity compromise as the cyber watchdog reissues its alert on repository attacks.

By Mark Tarre 4 min read Tue, 7th Apr 2026