Docker, Inc.® announced Docker Hardened Images (DHI), a curated catalog of security-hardened, enterprise-grade container images designed to meet today’s toughest software supply chain challenges.
Saltworks Partners with Secure Code Warrior
March 22, 2021
Saltworks announced a partnership with Secure Code Warrior to elevate the importance and accessibility of secure code education and skills development.
By helping developers write secure code from the start, development teams can ship quality code faster, avoiding errors and reducing risks, and increase skills adoption. The partnership aligns with Saltworks’ strategy to collaborate with organizations that support its mission to build progressive AppSec programs for global enterprises.
While secure coding principles can be driven from anywhere within an organization, every level of the development team (internally for the business and externally with customers) must eliminate vulnerabilities. Given the software industry’s increased focus on integrating AppSec into DevOps processes (i.e., DevSecOps), the Secure Code Warrior partnership is a proof point of Saltworks’ holistic approach that empowers developers to author error-free code and deliver secure applications from policy to production.
“Even the smallest programming mistake can cause a security breakdown that negatively affects deployment and application success, which can lead to compromised intellectual property and data, and loss of competitive advantage,” said Dennis Hurst, Founder and President of Saltworks. “Not only does Secure Code Warrior take a human-led approach in teaching and motivating developers to code securely, but it also drives training adoption throughout the development organization by providing positive skills-based pathways for developers in the language and framework of their choice. Both are proven to increase developer speed, accuracy and productivity.”
Whether development teams are local, hybrid or crowdsourced, software innovation is growing faster than ever before, as are the increased go-to-market and cyberthreat pressures that come along with rapid application development. It’s critical that developers, regardless of geolocation, have the skills and tools to create clean, quality code.
“Saltworks understands that code is a foundational element of all software developed and without security principles ingrained from the beginning, companies put themselves at risk for security breach and application failure,” said Stephen Allor, Global Head of Partners at Secure Code Warrior. “By making secure coding a positive and engaging experience for developers as they increase software security skills, Secure Code Warrior’s proven approach mitigates risk by embedding a secure code mindset throughout the development process—ultimately making coding and security top priorities.”
“While the onus is on companies to hold code to the highest caliber, they can’t assume all developers have the know-how to make it so,” continued Hurst. “Providing ongoing training opportunities as part of secure code objectives and tying AppSec priorities to performance metrics make a difference in motivation, performance and security integration. It also enables programmers to gain an equal knowledge base that fuels an environment where they spend more time writing and deploying good code than fixing errors.”
Industry News
May 19, 2025
GitHub announced that GitHub Copilot now includes an asynchronous coding agent, embedded directly in GitHub and accessible from VS Code—creating a powerful Agentic DevOps loop across coding environments.
May 19, 2025
Red Hat announced its integration with the newly announced NVIDIA Enterprise AI Factory validated design, helping to power a new wave of agentic AI innovation.
May 19, 2025
JFrog announced the integration of its foundational DevSecOps tools with the NVIDIA Enterprise AI Factory validated design.
May 15, 2025
GitLab announced the launch of GitLab 18, including AI capabilities natively integrated into the platform and major new innovations across core DevOps, and security and compliance workflows that are available now, with further enhancements planned throughout the year.
May 15, 2025
Perforce Software is partnering with Siemens Digital Industries Software to transform how smart, connected products are designed and developed.
May 15, 2025
Reply launched Silicon Shoring, a new software delivery model powered by Artificial Intelligence.
May 15, 2025
CIQ announced the tech preview launch of Rocky Linux from CIQ for AI (RLC-AI), an operating system engineered and optimized for artificial intelligence workloads.
May 14, 2025
The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced the launch of the Cybersecurity Skills Framework, a global reference guide that helps organizations identify and address critical cybersecurity competencies across a broad range of IT job families; extending beyond cybersecurity specialists.
May 14, 2025
CodeRabbit is now available on the Visual Studio Code editor.
The integration brings CodeRabbit’s AI code reviews directly into Cursor, Windsurf, and VS Code at the earliest stages of software development—inside the code editor itself—at no cost to the developers.
May 14, 2025
Chainguard announced Chainguard Libraries for Python, an index of malware-resistant Python dependencies built securely from source on SLSA L2 infrastructure.
May 14, 2025
Sysdig announced the donation of Stratoshark, the company’s open source cloud forensics tool, to the Wireshark Foundation.
May 13, 2025
Pegasystems unveiled Pega Predictable AI™ Agents that give enterprises extraordinary control and visibility as they design and deploy AI-optimized processes.
May 13, 2025
Kong announced the introduction of the Kong Event Gateway as a part of their unified API platform.
May 13, 2025
Azul and Moderne announced a technical partnership to help Java development teams identify, remove and refactor unused and dead code to improve productivity and dramatically accelerate modernization initiatives.
