Categories
Category //

Stephen Gates

A Developer’s Guide to Managing Open Source Risks

We’re living in an open source world. If you’re a developer today, it’s very likely that – no matter where you work or what type of applications you build – you rely at least in part on open source. Indeed,

A Developer’s List of Infrastructure as Code (IaC) Risks

Infrastructure-as-Code (IaC) tools are exemplary software solutions that Developers and DevOps teams use to describe common infrastructure components like servers, VPCs, IP addresses or VMs in a configuration language. Once ready to deploy, they use this configuration as a blueprint

OWASP API Risk List: What It Does Well, and What Could Be Improved

Heeding the security advice of leading community groups – like the Open Web Application Security Project (OWASP) – is a best practice for developers. But so is original, creative thinking about security issues. While the tips from organizations like OWASP

A Developer’s List of Microservices Risks

If you’re a developer today, it’s hard not to love microservices. By adding agility and resiliency to applications, microservices architectures make it easier to build high-performing apps. But a microservices strategy only pays off if you effectively manage the risks

Checkmarx – Making Waves Once Again

In organizations that encourage the usage of modern application development techniques to expedite the development, delivery, and deployment of custom software applications, the likelihood of open source libraries, components, modules, etc. being pulled into a code base by developers is

KICS is Exceeding All Expectations

KICS (Keeping Infrastructure as Code Secure) has had an incredibly successful launch with over 273k downloads as of date! As a result, we wanted to learn more about KICS, so we sat down with Ori Bendet, Director of Product Management

Not All AppSec Scanning Is Created Equal

You no doubt know the phrase, “if you don’t have anything nice to say, don’t say anything at all.” A better take on this idea might be: “if you don’t have anything helpful to say, don’t say anything at all.”

Skip to content