It’s virtually impossible to know the existence and location of every API endpoint (internal APIs, remote APIs, web APIs, REST endpoints), especially for large enterprises with a blend of new and legacy software. Application interdependencies, the use of open source and third-party services libraries, and intentionally exposed APIs create complex webs of interfaces. Some APIs don’t even show up until source code is compiled or when called during runtime. And yet endpoints are among the most vulnerable to attack, especially the invisible “shadow APIs” that aren’t easily accounted for by the teams using them.
NYDFS is proposing a new amendment that compliance, security, and development teams should be particularly concerned about one of the areas covered in the new amendment – the requirement to maintain an inventory of all software API endpoints. This is a tall order since most organizations have APIs they don’t even know about. And you can’t inventory what you don’t know is there.
The New York State Department of Financial Services (DFS) has proposed an amendment to its 2017 Cybersecurity Regulation (also known as 23 NYCRR Part 500). The 2017 regulation was one of the first of its kind and served as the model for many other regulations nationally and internationally. The proposed amendment would significantly expand the requirements that covered entities need to follow.
At JavaOne 2022 our VP of Product, Eric Minick, delivered an urgent message to Java devs in need of order amidst inherited and compounded code chaos. Watch his 15-minute session to get a glimpse of the biggest blind spots facing software development teams today.
“If we double the team size, we’ll go twice as fast, right?” If this sounds familiar, you’re not alone. Every day, organizations must make decisions to help them move faster and keep up with their competition.
CodeLogic today launched the first and only developer toolkit that scans post-compile binaries, runtime app behavior, and database connections to provide a complete and up-to-the-second picture of infrastructure-wide software connections and dependencies.
The challenge for organizations that either already outsource some or all of their software development, or are contemplating doing so, is ensuring that the software developed by these firms meets not only their own quality standards but industry benchmarks as well.
We recently released a new product capability to capture stored procedures in Oracle and PostgreSQL databases and Java and .NET calls of those stored procedures.
CodeLogic Principal Software Dev Engineers Jason Schatz and Rob Vrooman are delivering a full session at the upcoming GraphConnect conference in Austin, Texas.
We recently released a new plugin for Microsoft’s Visual Studio, enabling developers to view enhanced dependency data directly inside the IDE. The new plugin provides dependency data visibility within and across projects so developers can better understand their application connections and dependencies when making code changes.
When it comes to software intelligence and dependency mapping, how does it compare and work with APM tools? How exactly do application performance monitoring tools and dependency maps differ? And can they be used together?
While deprecated code is common in development cycles, how does it impact software engineers? And how can dependency mapping alleviate the complications inherent with deprecated code?
CodeLogic, Inc. today announced the appointment of Brian Pierce as Chief Executive Officer, effective immediately. Pierce brings over 30 years of software infrastructure and enterprise application expertise.
According to a survey from McKinsey, 60% of Chief Information Officers believe that their tech debt has risen significantly over the past three years. They also estimate that tech debt accounts for 20-40% of their entire tech estate—the equivalent of hundreds of millions of dollars.
Modern IDEs are amazing tools. However, when it comes to dependencies, IDEs only show dependencies on code in the workspace, typically within the project that is open.