The popular JavaScript translation library for AngularJS 1.x apps, angular-translate, has recently been identified with a critical cross-site scripting (XSS) vulnerability. Tagged as CVE-2024-33665, this security flaw presents significant risks, mainly as it affects all versions from v2.4.0 onwards. Angular-translate is widely utilized for dynamic content translation across various applications, making this vulnerability particularly impactful across the AngularJS ecosystem.
With HeroDevs’ AngularJS Essentials add-on, you can extend your security coverage to 10 critical dependencies on AngularJS, including angular-translate, to address this vulnerability.
As the web evolves, open source technologies like jQuery face significant end-of-life (EOL) challenges. At HeroDevs, we understand the critical need to maintain security in EOL open source software, which is why we're excited to offer Never-Ending Support (NES) for versions 1.6.x and 2.2.x of jQuery. Our Never-Ending Support products ensure your jQuery-based applications remain secure, compliant, and compatible.
Our CEO was nominated for EY Entrepreneur of the Year!
We're proud to announce that our Founder, Aaron Frost, has been nominated for the EY Entrepreneur of the Year. This recognition highlights his commitment to innovation and excellence in creating a more sustainable tech world.
Lessons from XZ Utils: Toward a Sustainable Open Source Ecosystem
After the XZ compromise, CISA sent out a reminder of their efforts to create a more secure tech space, asking technology manufacturers to be responsible and proactive in protecting the open-source package they depend on.
