Related content in this Stream
Discover enhanced VMware Tanzu Knowledge Graph features: explore open source catalogs, assess package vulnerabilities, ensure compliance, and streamline security with new insights and tools.
Discover how Tanzu Application Catalog empowers secure OSS use with custom container and Helm chart catalogs, offering enhanced vulnerability management and streamlined software transparency.
The VMware Tanzu Application Catalog software knowledge graph is a powerful capability that will continue to deliver new product features over the next year, including integrations with Tanzu Platform
Get a clear picture of your OSS supply chain, and the risks you face from your open source software dependencies, using the all-new Tanzu OSS Health Assessment.
Enhance software supply chain security with VEX, SBoM & CVE scan reports. Tanzu Application Catalog optimizes risk assessment for DevSecOps.
Trivy can now utilize CSAF VEX data to filter out false positives in CVE reports, maximizing the value of VEX documents in VMware Tanzu Application Catalog.
Bitnami-packaged open source software container images available in DockerHub are now signed by Notation, an implementation of the Notary Project specifications and a CNCF-incubating project.
There are many tools in the market to facilitate the deployment of open source software as containers in an air-gapped environment. But deploying open source software as Helm charts in an air-gapped e
Welcome to another edition of What’s new with Tanzu Application Catalog. This is a quarterly round up of all things related to Tanzu Application Catalog.
Learn how you can gain deep visibility into your open source software supply chain with the Software Package Data Exchange (SPDX) standard software bill of materials (SBoM) from Tanzu Application Cata
Tanzu Application Catalog now enables enterprises to meet data residency and data localization requirements while working with open source software.
Tanzu Application Catalog (an enterprise version of Bitnami Application Catalog) is a catalog of trusted, continuously maintained, and verifiably tested open source software images that is custom-buil
With Tanzu Application Catalog, enterprises can get open source software that is customized per their requirements, fully ready to be deployed, easy to use, and built on a SLSA L3 pipeline.
A new technology research paper by CCS Insight sheds light on the challenges enterprises face using open source software and offers insights into the value provided by Tanzu Application Catalog.
Reducing the number of CVEs in software is an important practice. But if compliance adherence becomes an obsession, bad practices that lower software quality will be adopted to achieve it.
Tanzu Application Catalog extends its software supply chain security capabilities by leveraging Notation for signing and verifying production-ready open source software artifacts.
Tanzu Application Catalog now ships multi-architecture container images, supporting both ARM64 as well as x86-64.