Blog Archive

Open Source Security

Dependency Health—assessing package risk with Snyk

May 16, 2019

Application Security

Scoring security vulnerabilities 101: Introducing CVSS for CVEs

May 16, 2019

Vulnerability Insights

CRLF injection found in popular Python dependency, urllib3

May 15, 2019

Open Source Security

JVM Ecosystem Survey 2019

May 14, 2019

Code Security

Understanding Amazon S3 security and compliance on AWS

May 10, 2019

Vulnerability Insights

A Denial of Service vulnerability discovered in the Axios JavaScript package - affecting all versions of the popular HTTP client

May 6, 2019

IaC Security

8 Azure Repos Security Best Practices

May 6, 2019

IaC Security

Remove sensitive data in your files and Azure Repos history

May 6, 2019

IaC Security

Never store credentials as code/config in Azure Repos

May 6, 2019

IaC Security

Add a SECURITY.md file to your Azure Repos

May 6, 2019

IaC Security

Add security testing to pull requests in Azure Repos

May 6, 2019

IaC Security

Tightly control access to your Azure Repos

May 6, 2019

IaC Security

Provide granular permissions and groups for users in Azure Repos

May 6, 2019

IaC Security

Use Personal Access Tokens with Azure Repos

May 6, 2019

IaC Security

Rotate Azure Repos SSH keys and personal access tokens

May 6, 2019

Vulnerability Insights

Do you know how healthy your .NET dependencies are?

May 3, 2019

Azure Repos enriched with DevSecOps capabilities

May 1, 2019

Container Security

Protect container images directly from your registries

April 30, 2019

Container Security

190,000 users affected by Docker Hub’s security breach. Now what?

April 29, 2019

Open Source Security

How much do we really know about how packages behave on the npm registry?

April 22, 2019

Container Security

80% of developers are not addressing Docker security

April 17, 2019