Snyk

The Risks of Open Source in the Software Supply Chain with Lawrence Crowther, Snyk

Sep 29, 2021 By Snyk In Snyk

The adoption of open-source software continues to grow and creates significant security concerns for everything from software supply chain attacks in language ecosystem registries to cloud-native application security concerns.

View Video

Snyk

Read more about The Risks of Open Source in the Software Supply Chain with Lawrence Crowther, Snyk

Python security best practices cheat sheet

Sep 27, 2021 By Frank Fischer In Snyk

In 2019, Snyk released its first Python cheat sheet. Since then, many aspects of Python security have changed. Using our learnings as a developer security company — as well as Python-specific best practices — we compiled this updated cheat sheet to make sure you keep your Python code secure. And before going any further, I need to give special thanks to Chibo and Daniel for their help with this cheat sheet!

Read Post

Snyk

Read more about Python security best practices cheat sheet

Snyk Container registry security integrations extended to GitHub, GitLab, Nexus, DigitalOcean, and more

Sep 23, 2021 By Danielle Inbar In Snyk

We’re excited to share that you can now use Snyk Container to scan container images stored in many more container registries. The latest additions include Github Container Registry, Nexus, DigitalOcean, GitLab Container Registry, and Google Artifact Registry.

Read Post

Snyk

Read more about Snyk Container registry security integrations extended to GitHub, GitLab, Nexus, DigitalOcean, and more

Snyk Customer Story - Expel

Sep 22, 2021 By Snyk In Snyk

Hear from Sam Brown, Principal DevSecOps Engineer at Expel, on how Snyk helps Expel build security into their engineering processes.

View Video

Snyk

Read more about Snyk Customer Story - Expel

Snyk Code CLI support now in public beta

Sep 21, 2021 By Frank Fischer In Snyk

Snyk is on the mission to make Static Application Security Testing (SAST) tools work for developers throughout the DevOps pipeline. Snyk Code scans in real time with high accuracy — and it does it right from the tools and workflows developers are already using. For example, the IDE plugins for IntelliJ, PyCharm, WebStorm, and Visual Studio Code make it easy to code, scan and fix even before code hits the version management.

Read Post

Snyk

Read more about Snyk Code CLI support now in public beta

DevSecOps Road Trip Germany stop - Sven Ruppert & Mathias Conradt

Sep 17, 2021 By Snyk In Snyk

Session 1: Polyglot apps lead to polyglot security holes. It's time to fight back!

View Video

Snyk

Read more about DevSecOps Road Trip Germany stop - Sven Ruppert & Mathias Conradt

The Tokenised Auth

Sep 17, 2021 By Snyk In Snyk

Authentication can sound simple. It's just a login form and a couple of database columns, right? Why would you need a separate identity platform to solve this? You've probably heard that you shouldn't roll your own crypto, or payments. Well, add authentication to that list. Ben Dechrai joins us to discuss the aspects of good authentication, from tokenisation to multi-factor, and dives into a few features of Auth0 that help you customise, extend, and personalise your users' experience.

View Video

Snyk

Read more about The Tokenised Auth

Introducing the new Snyk Docs Portal and Support Portal

Sep 15, 2021 By David Bailey In Snyk

We’re excited to announce two big updates to our Snyk User Content platform. You can now get better, quicker, clearer access to Snyk user documentation, allowing you to find the information you need, to get more and better use of your Snyk platform. This will help you implement, enable, and configure your Snyk integration, leading to a faster and smoother adoption and usage of Snyk at your company. Here are the enhancements to our User Content platform.

Read Post

Snyk

Read more about Introducing the new Snyk Docs Portal and Support Portal

DevSecOps Road Trip France stop - Smaïne Kahlouch, Mathieu Gillot, Tanguy Combe & Ismael Hommani

Sep 15, 2021 By Snyk In Snyk

Session 1: Build a smooth ci/cd pipeline using gitops and fluxv2. Working in a fast growing company raises a wide range of technical and organisational challenges.

View Video

Snyk

Read more about DevSecOps Road Trip France stop - Smaïne Kahlouch, Mathieu Gillot, Tanguy Combe & Ismael Hommani

DevSecOps Road Trip Netherlands stop - Nanne Baars & Brian Vermeer

Sep 15, 2021 By Snyk In Snyk

Session 1: From attack to writing code...what do you need to know as a developer? We will look at a concrete attack called: "XML external entity attack (XXE)" and see how we can trace it back to writing code. The described mitigations are simple: configure your parser securely, but is it this simple? We will focus on some examples and see if we can catch the attack with tests, code reviews, etc. Nanne Baars, Developer at Xebia and OWASP WebGoat Project lead

View Video

Snyk

Read more about DevSecOps Road Trip Netherlands stop - Nanne Baars & Brian Vermeer

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Snyk

The Risks of Open Source in the Software Supply Chain with Lawrence Crowther, Snyk

Python security best practices cheat sheet

Snyk Container registry security integrations extended to GitHub, GitLab, Nexus, DigitalOcean, and more

Snyk Customer Story - Expel

Snyk Code CLI support now in public beta

DevSecOps Road Trip Germany stop - Sven Ruppert & Mathias Conradt

The Tokenised Auth

Introducing the new Snyk Docs Portal and Support Portal

DevSecOps Road Trip France stop - Smaïne Kahlouch, Mathieu Gillot, Tanguy Combe & Ismael Hommani

DevSecOps Road Trip Netherlands stop - Nanne Baars & Brian Vermeer

Monthly Archive

Follow Us