Blog Archive

Introduction to penetration testing for developers

March 2, 2022

DevSecCon panel discussion: Which comes first, security or the app?

March 1, 2022

Visibly invisible malicious Node.js packages: When configuration niche meets invisible characters

February 28, 2022

Even non-developers can fix security vulnerabilities in code at The Big Fix

February 23, 2022

Join The Big Fix: a 24-hour livestream dedicated to fixing security vulnerabilities in your projects

February 21, 2022

A developer-centric approach to software

February 18, 2022

CVE-2022-24086 Vulnerability alert for websites using Magento Ecommerce

February 17, 2022

Case study: Python RCE vulnerability in Celery

February 15, 2022

SAST and SCA: Better together with Snyk

February 10, 2022

Lessons learned from the Argo CD zero-day vulnerability (CVE-2022-24348)

February 10, 2022

Join "The Big Fix" to secure your projects with Snyk and earn cool swag

February 9, 2022

Enhancing PCI compliance security with SAST and SCA

February 8, 2022

Log4Shell remediation with Snyk by the numbers

February 5, 2022

Enterprise security: Digital transformation and risk management with Anheuser-Busch Inbev and Manulife

February 3, 2022

Fun with ciphers in copycat Wordles

February 2, 2022

SnykCon recap: Building a developer-focused AppSec program

January 27, 2022

Stranger Danger: Live hack of how a Log4Shell exploit works

January 25, 2022

How Lunar shifted security left while building a cloud native bank

January 20, 2022

New years resolution: Don’t show my security tokens when hacking my demo application on stage

January 12, 2022

The Secure Developer: 2021 in review

January 12, 2022

URL confusion vulnerabilities in the wild: Exploring parser inconsistencies

January 10, 2022