Software Composition Analysis
Open-Source Software Security
Open-source software security is crucial in today's cloud-native world. Learn about vulnerabilities, dependencies, and tools to improve security in this in-depth blog post.
MOST POPULAR
all tags
other
Is your roadmap prioritizing memory safe programming languages?
Cybersecurity agencies from five different national governments put out a plea in December for developers to use memory-safe programming languages. Are you ready?
Vulnerability Management Lifecycle in DevSecOps
In this new series, CJ May shares his expertise in implementing secure-by-design software processes that empower engineering teams. The first stage of his DevSecOps program: vulnerability management.
GitGuardian launches Software Composition Analysis to make Open Source an asset, not a threat
Read how the latest addition to GitGuardian code security platform, automates vulnerability detection, prioritization, and remediation in software dependencies, directly impacting the health of your codebase.
SCaLE 21x: A Community Event About Much More Than Linux
Read our highlights from SCaLE 21x, where the community focused on all things open source, not just Linux, with over 270 sessions on DevOps, cloud tech, and security.
I asked 40 security experts to share their best advice, it didn't disappoint.
This post explores the best security advice we have received over the past almost 2 years from various different security professionals.
How To Respond To An AWS Key Honeytoken Trigger: A Detailed Guide
Learn how to effectively respond to an AWS key honeytoken trigger with this step-by-step guide. Investigate the incident, identify the leak source, secure your environment, and leverage OSINT techniques to protect your AWS infrastructure.
Misconfigurations in Google Firebase lead to over 19.8 million leaked secrets
Read our summary of research that found millions of records that exposed user passwords due to misconfigured or missing security settings.
![SOPS [Security Zines]](/content/images/size/w600/2024/03/SOPS-Security-Zine.png)
SOPS [Security Zines]
Enjoy the power of SOPS to secure your secrets with this new zine!
SnowFROC 2024: Securing The Future With OWASP Community In Denver
OWASP's annual Denver conference brought together thought leaders to talk about security, dependency management, and how AI is complicating our lives.
Three Mechanisms to Protect Your Git Repositories
...despite all intentions to follow best practices, they don't. When you automate enforcement of best practices, you can ensure those practices are followed...
The State of Secrets Sprawl 2024
The State of Secrets Sprawl 2024 report by GitGuardian uncovers a 28% increase in leaked secrets on GitHub, revealing an urgent need for significantly improved security practices.
Nation-state hackers access Microsoft source code and steal secrets
Microsoft has been experienced a sustained attack by Russian-backed nation-state attacker Midnight Blizzard (also known as NOBELIUM). This blog examines all we know so far
