Blog Archive

10 Java security best practices

September 17, 2019

Sequelize ORM npm library found vulnerable to SQL Injection attacks

September 11, 2019

Automating open source security scanning with Snyk and CircleCI

August 16, 2019

Staying ahead of security vulnerabilities with security patches

July 31, 2019

Fix open source vulnerabilities directly from your Eclipse IDE

July 25, 2019

How to increase Serverless observability, monitoring and security

July 15, 2019

Concerns of supply-chain attacks amplify as remote code execution was found in Ruby gem strong_password

July 7, 2019

Snyk research team discovers severe prototype pollution security vulnerabilities affecting all versions of lodash

July 5, 2019

Serverless is great, but what about the security of my AWS Lambda functions and their dependencies?

July 3, 2019

Best practices for secrets management in serverless applications

June 13, 2019

npm passes the 1 millionth package milestone! What can we learn?

June 4, 2019

10 Serverless security best practices

May 31, 2019

Scoring security vulnerabilities 101: Introducing CVSS for CVEs

May 16, 2019

CRLF injection found in popular Python dependency, urllib3

May 15, 2019

A Denial of Service vulnerability discovered in the Axios JavaScript package - affecting all versions of the popular HTTP client

May 6, 2019

How much do we really know about how packages behave on the npm registry?

April 22, 2019

After three years of silence, a new jQuery prototype pollution vulnerability emerges once again

April 15, 2019

Malicious remote code execution backdoor discovered in the popular bootstrap-sass Ruby gem

April 4, 2019

Introducing experimental integrity policies to Node.js

March 21, 2019

88% increase in application library vulnerabilities over two years

February 26, 2019

81% believe developers should own security, but they aren’t well-equipped

February 26, 2019