Articles

The Essential Guide to AI Bills of Materials (AIBOMs)

This guide is your one-stop shop on AI Bill of Materials (AIBOMs). Learn how to build an inventory of your AI model.

Beyond the Basics: Advanced Insights into XSS Vulnerabilities

Explore XSS attacks and empower your development teams with AI-powered prevention strategies. Uncover their mechanisms and learn how to secure web applications and protect user data.

Security That Thinks: How AI Is Rewriting the Rules of SecOp

Discover how AI SecOps enhances detection, reduces noise, and automates response, plus steps to implement it with the right models, data, and tools.

Scaling LLMs Securely Starts with the Right Ops Framework

Learn what LLMOps is, how it differs from MLOps, and what it takes to build, scale, and secure large language models in real-world production.

Building Interactive MCP Servers Experience on the Terminal using Python Fast Agent AI Framework

Learn to create AI-enabled chat experiences on the terminal using Fast Agent, a Python open-source framework. Integrate MCP servers for features like file system access and URL fetching to enhance your agentic workflows.

AWS AI Security: How to Identify, Prevent & Mitigate AI-Specific Risks

Learn how to secure AI workloads on AWS by identifying, addressing & mitigating model risks, data leakage, prompt injection, and compliance across the full AI lifecycle.

High velocity, low risk: How tech leaders can secure innovation without slowing down

Struggling with security in high-speed development? Learn how to embed developer-first security into your SDLC. Empower your team to secure innovation and reduce business risk without sacrificing velocity.

Building a Security News Summary with CrewAI AI Agent

Learn how to create an AI agent using the CrewAI framework to curate and summarize critical security vulnerabilities from the Snyk database. Automate your security news feed and stay informed effortlessly.

Data Quality in AI: Challenges, Implementation, Audits, & Best Practices

Discover how to improve AI performance with better data quality, including key metrics, tools, best practices, and common pitfalls to avoid.

AI for Offensive Security: How Smart Offense is Changing the Face of Cybersecurity

Explore how AI is revolutionizing offensive security, empowering red teams with advanced tools for reconnaissance, exploit generation, and social engineering.

SOC 2 Without the Headaches: A Developer-Friendly Guide to Attestation

Learn how to simplify SOC 2 compliance with integrated security testing, streamlined audits, and workflows that support fast, secure development.

Can Machine Learning Find Path Traversal Vulnerabilities in Go? Snyk Code Can!

Explore how Snyk’s machine learning-powered security tools tackle path traversal vulnerabilities in Golang code. Learn how to secure your Go applications and challenge yourself to detect and exploit vulnerabilities like a pro!

Leveraging Generative AI with DevSecOps for Enhanced Security

Learn about the top advantages of secure AI coding tools for stronger DevSecOps practices with Snyk.

LLM Weaponized via Prompt Injection to Generate SQL Injection Payloads

Think your AI financial assistant is harmless? Learn how LLMs can be tricked via prompt injection to generate SQL injection payloads, weaponizing your application. Discover how insecure coding practices expose you and how Snyk can help detect and fix these dangerous vulnerabilities.

OWASP Top 10 Code Vulnerabilities and How SAST Can Stop Them

Discover the OWASP Top 10 vulnerabilities and how SAST tools like Snyk Code empower developers to detect and fix them early in the development lifecycle.

How does Snyk DCAIF Work under the hood?

Read our technical deep-dive into how Snyk's DCAIF works. To start, with Snyk's Deep Code AI Fix, simply register for a Snyk account here, enable Snyk Agent Fix in your Snyk settings, and start reliably auto-fixing vulnerabilities in seconds.

Vibe Coding a Node.js File Upload API Results in Security Vulnerability

Explore the productivity promises of AI code generation using ChatGPT to build a Node.js file upload API. As security vulnerabilities easily slip in, Snyk can help developers, regardless of their background, catch and fix these risks, ensuring secure application delivery.

Achieving ISO 27001 Compliance: Key Challenges and Best Practices

Learn how to overcome ISO 27001 challenges and embed security into developer workflows with scalable, audit-ready best practices.

The Rise of Agentic AI and What It Means for Us

Agentic AI is an innovative technology that can make decisions and take action on its own to get things done. But what is the impact of Agentic AI on cybersecurity?

The Importance of Code Quality

Code quality is crucial for building high-quality, secure applications. Learn more about code quality, secure development, and Snyk’s code checker.