It’s virtually impossible to know the existence and location of every API endpoint (internal APIs, remote APIs, web APIs, REST endpoints), especially for large enterprises with a blend of new and legacy software. Application interdependencies, the use of open source and third-party services libraries, and intentionally exposed APIs create complex webs of interfaces. Some APIs don’t even show up until source code is compiled or when called during runtime. And yet endpoints are among the most vulnerable to attack, especially the invisible “shadow APIs” that aren’t easily accounted for by the teams using them.
NYDFS is proposing a new amendment that compliance, security, and development teams should be particularly concerned about one of the areas covered in the new amendment – the requirement to maintain an inventory of all software API endpoints. This is a tall order since most organizations have APIs they don’t even know about. And you can’t inventory what you don’t know is there.
The New York State Department of Financial Services (DFS) has proposed an amendment to its 2017 Cybersecurity Regulation (also known as 23 NYCRR Part 500). The 2017 regulation was one of the first of its kind and served as the model for many other regulations nationally and internationally. The proposed amendment would significantly expand the requirements that covered entities need to follow.
At JavaOne 2022 our VP of Product, Eric Minick, delivered an urgent message to Java devs in need of order amidst inherited and compounded code chaos. Watch his 15-minute session to get a glimpse of the biggest blind spots facing software development teams today.
We’re proud to announce that CodeLogic will be an exhibiting sponsor at this year’s CloudBees’ DevOps World conference in Orlando from September 27-29.
“If we double the team size, we’ll go twice as fast, right?” If this sounds familiar, you’re not alone. Every day, organizations must make decisions to help them move faster and keep up with their competition.
Tool fatigue is a common affliction in many software development environments and is characterized by an overwhelming sense of weariness that sets in as more and more tools get added to the developer toolkit.
A message from Brian Pierce, CodeLogic CEO, on the launch of CodeLogic's Continuous Software Intelligence Platform.
CodeLogic today launched the first and only developer toolkit that scans post-compile binaries, runtime app behavior, and database connections to provide a complete and up-to-the-second picture of infrastructure-wide software connections and dependencies.
While flying blind each time code is altered or added has become the norm, it’s not necessary.
Use SLAs to Enforce Clean Code Structures when Outsourcing Software Development
The challenge for organizations that either already outsource some or all of their software development, or are contemplating doing so, is ensuring that the software developed by these firms meets not only their own quality standards but industry benchmarks as well.
New Feature Release: Don’t Let Stored Procedures Get in the Way of Database Migration Plans
We recently released a new product capability to capture stored procedures in Oracle and PostgreSQL databases and Java and .NET calls of those stored procedures.
CodeLogic Engineers to Speak at Neo4j GraphConnect Conference
CodeLogic Principal Software Dev Engineers Jason Schatz and Rob Vrooman are delivering a full session at the upcoming GraphConnect conference in Austin, Texas.
New CodeLogic Plugin Provides Enhanced Dependency Data Inside Microsoft’s Visual Studio
We recently released a new plugin for Microsoft’s Visual Studio, enabling developers to view enhanced dependency data directly inside the IDE. The new plugin provides dependency data visibility within and across projects so developers can better understand their application connections and dependencies when making code changes.
Application Performance Monitoring and Dependency Mapping
When it comes to software intelligence and dependency mapping, how does it compare and work with APM tools? How exactly do application performance monitoring tools and dependency maps differ? And can they be used together?
Deprecated Code: How Dependency Mapping Can Prevent Headaches
While deprecated code is common in development cycles, how does it impact software engineers? And how can dependency mapping alleviate the complications inherent with deprecated code?
CodeLogic Appoints Brian Pierce as Chief Executive Officer
CodeLogic, Inc. today announced the appointment of Brian Pierce as Chief Executive Officer, effective immediately. Pierce brings over 30 years of software infrastructure and enterprise application expertise.
Identifying Tech Debt Worth Fixing
According to a survey from McKinsey, 60% of Chief Information Officers believe that their tech debt has risen significantly over the past three years. They also estimate that tech debt accounts for 20-40% of their entire tech estate—the equivalent of hundreds of millions of dollars.
Dependencies in your IDE, Programming to Prevent Break/Fix Cycles
Modern IDEs are amazing tools. However, when it comes to dependencies, IDEs only show dependencies on code in the workspace, typically within the project that is open.