LGBTQ+ in tech: from building apps to spreading magic—part II

What a month this one was! June 2020 has been revolutionary for many, as activists and supporters came together in response to many disruptive events. This year, Pride looks a little different. A lot different.  The parades are all virtual, the festivities are limited based on capacity, and while we’ve seen wins for the LGBTQIA+ […]

July 6, 2020

Demystifying HTTP request smuggling

HTTP request smuggling is an interesting vulnerability type that has gained popularity over the last year. This vulnerability could allow an attacker to leverage specific features of the HTTP/1.1 protocol in order to bypass security protections, conduct phishing attacks, as well as obtain sensitive information from requests other than their own.  It should also be […]

June 30, 2020

LGBTQ+ in tech: from building apps to spreading magic—part I

What a month this one was! June 2020 has been revolutionary for many, as activists and supporters came together in response to many disruptive events. This year, Pride looks a little different. A lot different.  The parades are all virtual, the festivities are limited based on capacity, and while we’ve seen wins for the LGBTQIA+ […]

June 29, 2020

The State of Open Source Security 2020

This report sheds light on the current security posture of open source software and reflects on security concerns, trends in vulnerabilities across packages and container images, and also examines the practices employed by maintainers and organizations in securing their software.

June 24, 2020

Regular Expression Denial-of-Service in websocket-extensions

Welcome to the newest Snyk blog series! In this monthly series, Snyk looks back on the vulnerabilities discovered by or reported to our research team. We choose one noteworthy vulnerability from the past month and tell the story behind the discovery, research, and disclosure of the vulnerability. We highlight the researchers, developers, and users who are helping identify and remediate vulnerabilities across the open source community.

June 22, 2020

The DevOps virtual conference we built with the help of Snyk and Patrick Debois

Great physical conferences are magical. You learn from incredible talks, you’re exhilarated by being surrounded by the best in the game, you find fellow travelers who share similar goals and experience, similar struggles that you hope to conquer together, and so much more. The connections you make at conferences often lead to lifelong friendships and […]

June 19, 2020

Celebrating Pride Month—Snyk style!

When it comes to Pride month, the conversation in recent years has seen a noticeable shift, especially in the corporate landscape. It has not gone unnoticed in the LGBTQ+ community each year more and more brands seem to put out a Pride campaign to boost their visibility throughout the month of June, to then pack […]

June 19, 2020

Git, the easy way: changing history using rebase—part II

Welcome back to the second part of how to work with git, the easy way! In the previous article, we discussed the basics of Rebase as well as two common scenarios that all of us might encounter when working with git. You can find the first part here. In this part, we will go over […]

June 17, 2020

How to maintain npm dependencies in your project

It’s very common that we find projects working correctly in production but are no longer actively maintained—it’s in production, it works, and the client considers the project finished. Unfortunately, this is not entirely true. We tend to forget that when a project is finished and it’s in production, it does not mean that it doesn’t […]

June 11, 2020

The top 3 reasons to join the AWS, CircleCI, and Snyk webinar on the DevSecOps journey

To prepare for an uncertain future, businesses everywhere are accelerating their move to the cloud. For the developers, this means shifting to cloud native development practices. Developers want to know how this shift will change our DevSecOps tooling and processes.  The short answer is it won’t!  On Tuesday, June 16 from 10-11 am PT, three […]

June 10, 2020

Git, the easy way: changing history using rebase—part I

Lately, I was working on a big feature that included several changes in many areas of the code. While trying to keep the PR for this feature easy to read, I split all the functionality into several commits. As time went by, I quickly realized that those splits are not enough—there were lots of changes […]

June 9, 2020