HCLSoftware Launches New Version Of AppScan 360º To Address Supply Chain Risks

• 15 Sep 2025
• TM Team
• 0 Comments

HCLSoftware has released version 2.0 of its HCL AppScan 360º platform, aiming to give enterprises greater control over software supply chains as open-source adoption accelerates and data regulations tighten.

The new release delivers application security testing, software composition analysis and automated software bill of materials generation within secure on-premises or sovereign cloud environments.

High-profile vulnerabilities such as Log4Shell have highlighted the risks created by reliance on open-source software components sourced from multiple repositories. Enterprises often depend on hundreds or even thousands of components, many of which lack visibility into origins, licensing and security. At the same time, governments are imposing stricter rules. Gartner estimates that more than 70 per cent of countries have introduced or are drafting data sovereignty laws. Regulations such as the EU’s Cyber Resilience Act and the US Executive Order on Improving the Nation’s Cybersecurity require faster patching, stronger oversight and full lifecycle visibility of software components.

Rajesh Iyer, Executive Vice President and Portfolio Manager at HCLSoftware, said the pressures are reshaping development practices.

“The global move towards data sovereignty is changing the ecosystem in which secure development happens, but not the increasing pace, which is driven to a large degree by open-source adoption and Ai tooling,” Iyer said. “These pressures are forcing organizations to rethink how they manage open-source software, track vulnerabilities and control where and how their data is stored and processed.”

HCL AppScan 360º version 2.0 combines several testing and remediation technologies, including dynamic, static, interactive and composition analysis, as well as security testing for APIs, infrastructure-as-code and secrets.