DevSecOps

Yes, DevSecOps is a buzz-word, but it’s an important one! Security has an important part to play in application lifecycles and workflows. Learn how you can best integrate security into your existing pipelines.

Engineering is somewhat like basketball

Today I want to focus on the engineering team goal of getting things shipped, and show what helps us achieve this at Snyk. There are several practices we observe in our development cycle that bind well and keep us shipping all the time. I’ll explain the philosophy behind our approach and show the Continuous Delivery […]

August 4, 2016

HTTPS Adoption *doubled* this year

Despite being around for over 20 years, HTTPS has always remained very lightly adopted – until now. Data from 2 independent sources show HTTPS adoption has more than doubled in the last year, an unprecedented massive spike in adoption of this security control. Stats from BuiltWith imply HTTPS adoption has more than tripled, going from […]

July 20, 2016

5 Ways to Get Node.js Vulnerability Alerts

Here at Snyk, we maintain a database of known vulnerabilities in Node.js and front-end npm packages, called Vulnerability DB (also on GitHub). For each vulnerability, it includes a description of the vulnerability, additional references, and most importantly, how to remediate it. The remediations offered are typically either to upgrade to a new version of the […]

June 2, 2016

10 Reasons To Use HTTPS

HTTPS, HTTP over TLS, has been around since 1994, and has been well adopted by the security sensitive web — online banking, shopping, taxes and more. However, the vast majority of websites (est. 81% to 97%) continue to communicate using clear (unencrypted) HTTP — no matter how insecure that is. BuiltWith stats showing small but growing HTTPS adoption Today, […]

July 10, 2015