Back to blog

DevSecOps

10 Free Developer Tools to Shift Left Security

10 Free Developer Tools to Shift Left Security

Have you ever produced a bug-free, well-tested release candidate that later failed the security tests done by InfoSec? This may be due to your security testing

5 Essential Cloud Security Management Tips Most DevOps Neglect

5 Essential Cloud Security Management Tips Most DevOps Neglect

Did you know that 65% of organizations believe they have to choose between innovation and security? This stems from the idea that developers need full access

bad coding habits

5 Bad Coding Habits That Leave Your Source Code Exposed

In 2020 the average cost of a data breach was $3.86 Million. There are many ways that you can be proactive about your security to prevent

How to Choose a Secret Scanning Solution to Protect Credentials in Your Code

How safe are your passwords? How secure are your API keys? Are you sure your CI pipeline is configured using the best security practices? One of

Stopping Supply Chain Attacks With Preflight

It’s been a few weeks since the CodeCov hack sent ripples across the software development industry. One of these ripples was an increased awareness of supply

the last mile of sensitive data

The Last Mile of Sensitive Data

Almost any given modern software project these days will contain a set of technologies that offer a developer-productivity story, for traditional cloud stacks and cloud native

Credentials, Risk, and The Supply Chain: Lessons to Learn From The Codecov Breach

It seems like there’s a data breach disclosed every day. They come in a variety of forms and from all possible industries and verticals. However, some

Why We Need Developer Tools for Security and Not Security Tools for Developers

The further down the line we discover a software defect – the more it costs to fix and recover from it, whether it’s a bug that

Netz: Scan the internet while drinking coffee

Netz lets you run internet-wide misconfigurations research easily and continuously. It supports infrastructure-as-code so you can put your plan in a config file, run the CLI,

Stop leaks at the source!