Blog Archive

How to prevent XPath injection attacks

May 10, 2023

Fix cloud security issues faster and at the source with Snyk IaC

April 4, 2023

Snyk brings developer-first AppSec approach to C/C++

April 4, 2023

Snyk achieves Red Hat Vulnerability Scanner Certification

April 3, 2023

Data leak in the Netherlands: What developers should learn from this

March 31, 2023

New language-specific Snyk Top 10 for open source vulnerabilities

March 15, 2023

Preventing XSS in Django

March 13, 2023

Mitigating path traversal vulns in Java with Snyk Code

March 6, 2023

API authentication vulnerability found in Snyk Kubernetes integration (CVE-2023-1065)

February 28, 2023

Gitpod remote code execution 0-day vulnerability via WebSockets

February 27, 2023

Finding YAML Deserialization with Snyk Code

February 23, 2023

The dangers of setattr: Avoiding Mass Assignment vulnerabilities in Python

February 15, 2023

Prevent OWASP Top 10 vulns with new Snyk Learn learning path

January 17, 2023

Supply chain security incident at CircleCI: Rotate your secrets

January 7, 2023

Unsafe deserialization vulnerability in SnakeYaml (CVE-2022-1471)

December 14, 2022

Code injection vulnerabilities (CVSSv3 5.8) found in Snyk CLI and IDE plugins

November 30, 2022

Fetch the Flag CTF 2022 writeup: Potty Training

November 12, 2022

Fetch the Flag CTF 2022 writeup: Disposable Message

November 10, 2022

Fetch the Flag CTF 2022 writeup: git-refs

November 10, 2022

Fetch the Flag CTF 2022 writeup: Not So Smart Fridge

November 10, 2022

Fetch the Flag CTF 2022 writeup: Roadrunner

November 10, 2022