%term

Finding and fixing exposed hardcoded secrets in your GitHub project with Snyk

Jun 25, 2024 By Chandler Mayo In Snyk

Snyk is an excellent tool for spotting project vulnerabilities, including hardcoded secrets. In this blog, we'll show how you can use Snyk to locate hardcoded secrets and credentials and then refactor our code to use Doppler to store those secrets instead. We'll use the open source Snyk goof project as a reference Node.js boilerplate application, so feel free to follow along with us.

Read Post

Snyk

Read more about Finding and fixing exposed hardcoded secrets in your GitHub project with Snyk

How to Find and Pull ARM-based Docker Images

Jun 23, 2024 By Snyk In Snyk

Watch the full video for more...

View Video

Snyk

Read more about How to Find and Pull ARM-based Docker Images

How to Get the IP Address of a Docker Container

Jun 22, 2024 By Snyk In Snyk

Watch the full video for more...

View Video

Snyk

Read more about How to Get the IP Address of a Docker Container

How to See Differences in Your Node.js Docker Container

Jun 21, 2024 By Snyk In Snyk

Watch the full video for more...

View Video

Snyk

Read more about How to See Differences in Your Node.js Docker Container

Breaking caches and bypassing Istio RBAC with HTTP response header injection

Jun 20, 2024 By Rory McNamara In Snyk

After our recent successes exploring WebSocket Hijacking vulnerabilities, we decided to expand this research project into other attacks that involve WebSockets. We started by looking at WebSocket smuggling attacks and expanded our scope to include HTTP response header injection attacks and potential novel impacts.

Read Post

Snyk

Read more about Breaking caches and bypassing Istio RBAC with HTTP response header injection

How to Check Node.js Docker Image Version You're Using

Jun 20, 2024 By Snyk In Snyk

Watch the full video for more...

View Video

Snyk

Read more about How to Check Node.js Docker Image Version You're Using

How to Open a Shell in a Node.js Docker Container

Jun 19, 2024 By Snyk In Snyk

Watch the full video for more...

View Video

Snyk

Read more about How to Open a Shell in a Node.js Docker Container

Automate security controls from development to production on Google Cloud

Jun 18, 2024 By David Lugo In Snyk

To help businesses develop fast and stay secure, Snyk prioritizes seamless compatibility with developers’ existing workflows. In other words, every major tool or environment a developer touches in their everyday work can interface with Snyk tooling. This compatibility includes partnerships with major cloud providers like Google Cloud.

Read Post