%term

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Feb 8, 2023 By Snyk In Snyk

Building JavaScript applications today means that we take a step further from writing code. We use open-source dependencies, create a Dockerfile to deploy containers to the cloud, and orchestrate this infrastructure with Kubernetes. Welcome - you're a cloud native application developer! As developers, our responsibility has broadened, and more software means more software security concerns for us to address.

View Video

Snyk

Read more about Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

ARMO & ChatGPT - Create Custom Controls Faster

Feb 7, 2023 By Oshrat Nir In ARMO

We are happy to announce that ARMO Platform users can now utilize ChatGPT to quickly and easily create custom controls. ARMO is the first Kubernetes security company to offer this kind of integration. Read all about it 👇

Read Post

ARMO

Read more about ARMO & ChatGPT - Create Custom Controls Faster

How to Enforce an Access Control Policy

Feb 7, 2023 By Will Seaton In Styra

Access control is the process of dictating who or what can access resources and assets and what actions are allowed once access is granted. An access control policy, by way of an enforcement mechanism, puts those parameters into action. Safeguarding data, IT systems and applications requires a robust access control solution, especially where financial, medical and other sensitive data is concerned.

Read Post

Styra

Read more about How to Enforce an Access Control Policy

Open Source License Management Tools: Challenges, Opportunities, and What to Look Out For

Feb 7, 2023 By Chris Lindsey In Mend

More and more companies are using more and more open source. The stats I’ve seen say seventy to seventy-five percent of all applications use open source or have some type of open source associated with them. I think that number is actually higher. Of all the companies that I’ve worked for, just about every single application has some type of open source associated with it.

Read Post

Mend

Read more about Open Source License Management Tools: Challenges, Opportunities, and What to Look Out For

Snyk Integrations 101

Feb 7, 2023 By Snyk In Snyk

Do you want to learn about key initial integrations when getting started with Snyk? Watch this recording where Shawn Miller and Jim Jones cover Integrations 101.

View Video

Snyk

Read more about Snyk Integrations 101

How YellowAI Uses AWS & Snyk: Securing Cloud & Apps Using a Developer-First Approach

Feb 7, 2023 By Snyk In Snyk

Citu Singh of CNBC-TV18 asks technology business leaders to share their philosophy on developing applications quickly and safely. Apoorva Gaurav, VP of Engineering from YellowAI, talks about how his team uses Snyk, while Shaun McLagan, VP of Snyk APJ, shares the benefits of a developer-first approach to security.

View Video

Snyk

Read more about How YellowAI Uses AWS & Snyk: Securing Cloud & Apps Using a Developer-First Approach

Rewind to Cloud Native Policy Day with OPA at KubeCon + CloudNativeCon NA 2022

Feb 7, 2023 By Styra In Styra

Styra invited OPA speakers from Snap, Capital One, Chime, Nvidia, Snowflake, Comcast, Vanguard, T-Mobile, as well as Styra CTO Tim Hinrichs, to share how they're using OPA today.

View Video

Styra

Read more about Rewind to Cloud Native Policy Day with OPA at KubeCon + CloudNativeCon NA 2022

How to Create a SPDX SBOM Using Mend

Feb 6, 2023 By Mend In Mend

In this short video, we will demonstrate how to create an NTIA compliant Software Bill of Materials for applications that have been scanned using Mend. ...

View Video

Mend

Read more about How to Create a SPDX SBOM Using Mend

Mend Bitbucket Cloud Integration

Feb 6, 2023 By Mend In Mend

Are you using Bitbucket.com? Mend can integrate with your source control and quickly detect open source artifacts and their known vulnerabilities and licensing risks. Mend also provides all the information you need to fix these artifacts automatically.

View Video

Mend

Read more about Mend Bitbucket Cloud Integration

Dev-First Prevention Strategies

Feb 3, 2023 By Snyk In Snyk

Security and engineering teams often fail to find a balance between meeting the necessary security objectives for their organization and ensuring maximum velocity. While security teams view the process of blocking new critical severity vulnerabilities as a basic security best practice, engineering teams often push back out of fear that it will create too much friction for their developers. This dynamic is often based on prior experience with legacy security systems that focus almost solely on the needs of security and fail to support developers in this process.

View Video

Snyk

Read more about Dev-First Prevention Strategies

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

ARMO & ChatGPT - Create Custom Controls Faster

How to Enforce an Access Control Policy

Open Source License Management Tools: Challenges, Opportunities, and What to Look Out For

Snyk Integrations 101

How YellowAI Uses AWS & Snyk: Securing Cloud & Apps Using a Developer-First Approach

Rewind to Cloud Native Policy Day with OPA at KubeCon + CloudNativeCon NA 2022

How to Create a SPDX SBOM Using Mend

Mend Bitbucket Cloud Integration

Dev-First Prevention Strategies

Monthly Archive

Follow Us