Resources

Simple Doesn't Always Mean Secure: Avoid this Golang XSS Pattern

Cross-site scripting (XSS) attacks are a web vulnerability that allows attackers to inject malicious scripts into web pages. Learn how to prevent and fix XSS scripting in Golang.

Developer Training in Cybersecurity: Enhance development & security teams collaboration

SAST essentials for AI-generated code: A security leader’s handbook

The Rise of Platform Engineering webinar

Watch Snyk's webinar as we dive into the latest developments in the rise of Platform Engineering.

5 Common AppSec Challenges in FinServ

Learn how to overcome key AppSec challenges in FinServ, from regulatory compliance to cyber threats, while aligning security and development teams.

5 Key Learnings on How to Get Started in DevSecOps

During DevSecCon’s recent community call on How to Get Started in DevSecOps, security experts from the DevSecCon community shared actionable advice, practical steps, and insights for navigating this critical field. Here are the top five takeaways from this call.

How to Install Python on macOS

Learn how to install Python on macOS step by step. This easy guide covers downloading, installing, and setting up Python on your Mac for beginners and developers.

What You Need to Know About ISO 27001

Developer security best practices in a fast growing technology company

Secure your software development lifecycle with AI-powered remediation, risk-based prioritization, and CI/CD security. Discover how Snyk helps tech teams build fast while staying secure.

What You Need to Know About OWASP

Security Risks with Python Package Naming Convention: Typosquatting and Beyond

Beware of typosquatting and misleading Python package names—one small mistake in pip install can expose your system to backdoors, trojans, and malicious code. Learn how attackers exploit package naming conventions and discover best practices to secure your open-source supply chain.

What you need to know about CRA

What You Need to Know About PCI DSS 4.0

5 Critical Capabilities for Progressing Your DevSecOps Program

Best Practices for SOC2

How to Secure Your GitHub Actions Workflows with Snyk to Enhance JavaScript Security

Snyk provides a pre-built custom Snyk GitHub Actions workflow that you can add to your CI and saves you the trouble of managing the vulnerability scans using the Snyk CLI directly.

Is TypeScript All We Need for Application Security?

What are the security controls and fallacies in TypeScript security? Securing TypeScript applications involves a multi-layered approach.

Open Source Security in 2024

Defending your FinServ Application Against Modern Threats Infographic

Thank you for checking out our infographic on securing your FinServ Applications! To learn more, download our Optimizing AppSec in FinServ eBook.

5 Regulations Every FinServ Organization Should Know About

5 Steps to Prioritize Based on Risk with Snyk - Risk-Based Prioritization Cheat Sheet

Keeping up with security can feel like a juggling act, but Snyk makes it easier by helping you focus on what matters. Follow these five steps
to protect your most important application assets and prioritize issues based on the actual risk to your organization.

Why the fastest tech organizations choose Snyk

Can Machine Learning Find Path Traversal Vulnerabilities in Go? Snyk Code Can!

Explore how Snyk’s machine learning-powered security tools tackle path traversal vulnerabilities in Golang code. Learn how to secure your Go applications and challenge yourself to detect and exploit vulnerabilities like a pro!

Understanding Server-Side Template Injection in Golang

SSTI can open the door to escalating security risks such as file inclusion, Cross-Site Scripting (XSS), or even Code Injection Attacks.