Code-SicherheitNew years resolution: Don’t show my security tokens when hacking my demo application on stage12. Januar 2022
Schwachstellen-InsightsURL confusion vulnerabilities in the wild: Exploring parser inconsistencies10. Januar 2022
Schwachstellen-InsightsOpen source maintainer pulls the plug on npm packages colors and faker, now what?9. Januar 2022
Schwachstellen-InsightsFTC highlights the importance of securing Log4j and software supply chain7. Januar 2022
Schwachstellen-InsightsCTF secrets revealed: TopLang challenge from SnykCon 2021 explained6. Januar 2022
IaC-SicherheitChecking Terraform IaC security in CI/CD with Regula and Bitbucket Pipelines [Tutorial]29. Dezember 2021
Schwachstellen-InsightsNew Log4j 2.17.1 fixes CVE-2021-44832 remote code execution (but it’s not as bad as it sounds)29. Dezember 2021
Open-Source-SicherheitIt takes a community: Responding to open source criticism post-Log4Shell24. Dezember 2021
IaC-SicherheitSnyk IaC in 2021: Leading infrastructure as code security for developers22. Dezember 2021
Container-SicherheitSnyk Container in 2021: Shifting container security all the way left22. Dezember 2021