GitHub Announces Security Flaw Alerts for Python Code

GitHub is extending a system that scans coding languages for security vulnerabilities with the addition of Python. The feature debuted last year with Ruby and JavaScript support.

With this update, GitHub, which is currently in the process of being acquired by Microsoft for $7.5 billion, the world’s largest code repository platform can look into Python code published by developers and issue notifications for known security vulnerabilities.

“We’re pleased to announce that we’ve shipped Python support. As of this week, Python users can now access the dependency graph and receive security alerts whenever their repositories depend on packages with known security vulnerabilities,” GitHub announced today.

This new feature will be introduced gradually, and at this point, only a few recent vulnerabilities are supported, though Microsoft says that more known issues would be added over the coming weeks.

“Going forward, we will continue to monitor the NVD feed and other sour... (read more)

from Softpedia News / Global https://ift.tt/2NXks2O