Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

How to Shift-Left Better with Git Hooks

Aug 22, 2023 By Cenk Kalpakoğlu In Kondukto

The philosophy of "shifting left" in software development is transforming the way we approach error and resolution. By moving the focus of error detection to earlier stages in the development cycle, teams can address issues when they are more accessible and less expensive to fix. Integral to this shift-left approach are Git hooks, powerful tools that allow us to enforce quality control right from the code-commit stage.

Read Post

Kondukto

Read more about How to Shift-Left Better with Git Hooks

Five Key Application Security Best Practices and Benefits for Maintaining Up-to-Date Dependencies

Aug 22, 2023 By Rhys Arkins In Mend

We’re using more code, software components, and dependencies than ever before, making security breaches an ever-growing threat. It’s easy for developers and DevOps teams to neglect dependency updates when faced with such high volume, but doing so allows applications to fall behind the latest versions if not properly managed. This typically leaves applications using outdated dependencies, which exposes them to ever-increasing security debt and risk.

Read Post

Mend

Read more about Five Key Application Security Best Practices and Benefits for Maintaining Up-to-Date Dependencies

Does GitOps enhance application security?

Aug 21, 2023 By Vandana Verma Sehgal In Snyk

GitOps was pioneered by Weeveworks in 2017. It uses familiar tools to implement continuous deployment for cloud-native applications, improving the developer experience of Kubernetes cluster management and application delivery.

Read Post

Snyk

Read more about Does GitOps enhance application security?

Application Security Report: Q2 2023

Aug 21, 2023 By Michael Tremante In Cloudflare

Cloudflare has a unique vantage point on the Internet. From this position, we are able to see, explore, and identify trends that would otherwise go unnoticed. In this report we are doing just that and sharing our insights into Internet-wide application security trends. This report is the third edition of our Application Security Report. The first one was published in March 2022, with the second published earlier this year in March, and this is the first to be published on a quarterly basis.

Read Post

Cloudflare

Read more about Application Security Report: Q2 2023

See how to onboard and scan in minutes with Polaris | Synopsys

Aug 21, 2023 By Synopsys In Synopsys

Polaris Software Integrity Platform is a cloud-based, user-friendly application security testing tool optimized for DevSecOps. See how you can get onboarded and scanning in minutes.

View Video

Synopsys

Read more about See how to onboard and scan in minutes with Polaris | Synopsys

An Introduction to Application Security

Aug 21, 2023 By Jeff Darrington In Graylog

While security teams may “run on Dunkin’,” companies run on applications. From Salesforce and Hubspot to ServiceNow and Jira, your organization relies on a complex, interconnected application ecosystem. In 2022, organizations used an average of 130 Software-as-a-Service (SaaS) applications. While these technologies enabled them to reduce costs and achieve revenue targets, they created new security risks.

Read Post

Graylog

Read more about An Introduction to Application Security

Application Security Requirements: Trends and Best Practices

Aug 18, 2023 By Kayly Lange In Splunk

Ensuring application security is not just about protecting data. It’s about safeguarding your company's reputation, keeping customer trust, and adhering to increasingly stringent regulatory requirements. Read on as we delve into application security requirements: the pressing security threats impacting applications, the critical security requirements your application needs to meet, and the best practices to adopt to achieve robust application security.

Read Post

Splunk

Read more about Application Security Requirements: Trends and Best Practices

Securing your Software Supply Chain

Aug 14, 2023 By Datadog In Datadog

Composability has rapidly accelerated the pace of software development by allowing engineers to reuse openly shared libraries and packages. But the widespread adoption of these components also makes them an enticing avenue of attack for malicious actors. In this fireside session, André Arko (Head of Open Source, Ruby Central) and Dustin Ingram (Director, Python Software Foundation) will join Emilio Escobar (CISO, Datadog) for a discussion about securing your software supply chain.

View Video

Datadog

Read more about Securing your Software Supply Chain

Creating a Culture of Security

Aug 14, 2023 By Datadog In Datadog

Just as DevOps is more than just CI/CD tooling, DevSecOps is more than simply scanning code for vulnerabilities in your deployment pipeline. Creating a culture where every engineer is invested in reducing risk and values security can be challenging. In this panel session, we’ll chat with engineering leaders from security, development, and operations to learn how they’re fostering a culture of security in their organizations.

View Video

Datadog

Read more about Creating a Culture of Security

Consolidate Your AppSec Solutions and Reduce Risk | Synopsys

Aug 14, 2023 By Synopsys In Synopsys

Synopsys has it all: best-of-breed capabilities, a proven track record as an industry leader, and the expertise and staying power an organization needs to be successful. For organizations facing unknown levels of software risk and unnecessary complexity and inefficiency in their AppSec initiatives, working with the right vendor will streamline your AppSec environment, so you can manage software risk before it becomes business risk.

View Video