リソース

What If Everybody Can Code?

AI empowers citizen developers to code, posing new security & Shadow IT challenges. Explore how organizations can securely support widespread coding in this evolving landscape.

MCP Security – What's Old is New Again

MCP security faces old and new threats like injection attacks, supply chain risks, and AI-specific dangers like tool poisoning. Learn to mitigate risks to malicious, vulnerable, and insecure MCP servers.

Ensuring PCI DSS Compliance: The Role of SAST, DAST, and API Security Testing

Achieve PCI DSS compliance with best practices and tools like Snyk API & Web or Snyk Learn. Secure payment data and build trust while simplifying audits and testing.

5 Best MCP Servers for Developers

Here are Snyk’s Top 5 recommendations for MCP Servers that developers will get the most value from.

A Beginner's Guide to Visually Understanding MCP Architecture

A beginner's guide to understanding Model Context Protocol (MCP) architecture visually. Explore MCP Hosts, Clients, Servers, transport types, and how MCP extends LLMs beyond function calling & REST APIs.

How to Add a New MCP Server to VS Code

Unlock the power of AI in VS Code! Learn how to integrate MCP Servers, like GitHub's, to extend GitHub Copilot's capabilities with custom tools. This guide covers setup, configuration with .vscode/mcp.json, and using agent mode for enhanced developer workflows.

Exploiting MCP Servers Vulnerable to Command Injection

Learn how vulnerable MCP servers in AI and LLM workflows, especially for developers, can lead to dangerous command injection attacks and how to mitigate the risks.

Easy Website Design for Devs: Bolt + Figma

Enhanced Vulnerability Detection with AI

Snyk leverages AI and large language models to enhance vulnerability detection, reducing manual analysis and information overload for security experts. Discover how AI-powered classification and fix commit analysis improve accuracy and speed in identifying security threats.

How to Build a Culture of Secure Coding in 3 Easy Steps

RAG vs CAG: Key Differences in AI Generation Strategies

Compare RAG vs CAG AI generation strategies. Learn key differences, trade-offs in accuracy & latency, and choose the best approach for enhancing LLMs with external data.

How to Use MCP Servers with Claude Desktop | Real-Time AI Integration

AI Risk Assessment Strategies, Best Practices and Tools

As AI adoption accelerates, so do the risks. This article explores crucial AI risk assessment strategies, from identifying threats to implementing best practices and leveraging essential tools for secure and responsible AI.

How to Run MCP Servers with Docker

Struggling with local MCP server installations and security concerns? Discover how Docker can simplify deployment, enhance security, and streamline your workflow. Includes examples for tools like Qodo Gen.

GitHub Copilot Makes You Vulnerable

More Ways GitHub Copilot Makes You Vulnerable

How AI Impacts Reconnaissance and Bug Bounties

Why ASPM is the Future of AppSec

How to Add a New MCP Server to Cursor

Learn how to configure MCP Servers in the Cursor AI code assistant. Enhance your agentic development workflow by adding global or project-specific servers.

How to Build an MCP Server in Node.js to Provide Up-To-Date API Documentation

Learn how to build a basic MCP Server in Node.js using the official Anthropic Model Context Protocol (MCP) SDK in this tutorial.

How to Debug MCP Server with Anthropic Inspector

Learn to debug your Anthropic MCP server with the official MCP Inspector. Start with a simple Node.js example and use the MCP Inspector UI to inspect and interact with your server's tools. Discover practical debugging tips and workarounds.

Exploiting AI Generated Code

Cursor AI: The VS Code Competitor

Can This New AI Write Safe Code? (Claude 3.7 Sonnet)