How to Choose a Secret Scanning Solution to Protect Credentials in Your Code
How safe are your passwords? How secure are your API keys? Are you sure your CI pipeline is configured using the best security practices? One of
DevSecOps
Stopping Supply Chain Attacks With Preflight
It’s been a few weeks since the CodeCov hack sent ripples across the software development industry. One of these ripples was an increased awareness of supply
The Last Mile of Sensitive Data
Almost any given modern software project these days will contain a set of technologies that offer a developer-productivity story, for traditional cloud stacks and cloud native
Credentials, Risk, and The Supply Chain: Lessons to Learn From The Codecov Breach
It seems like there’s a data breach disclosed every day. They come in a variety of forms and from all possible industries and verticals. However, some
Why We Need Developer Tools for Security and Not Security Tools for Developers
The further down the line we discover a software defect – the more it costs to fix and recover from it, whether it’s a bug that
Netz: Scan the internet while drinking coffee
Netz lets you run internet-wide misconfigurations research easily and continuously. It supports infrastructure-as-code so you can put your plan in a config file, run the CLI,