Develop Secure Software logo
7 best practices for modern container security
June 29, 2022

7 best practices for modern container security

Containers are powerful, but also a challenge to secure. Here's how to protect your containers and their underlying infrastructure throughout the development pipeline. 
Read More
Software supply chain security top of mind for dev teams — but tampering detection lags
June 23, 2022

Software supply chain security top of mind for dev teams — but tampering detection lags

A survey of more than 300 software professionals found the threat of supply chain attacks looms large—but efforts to detect and block them lacking.
Read More
Rejoice, devs and all! Privacy Pass standard nukes CAPTCHAs
June 23, 2022

Rejoice, devs and all! Privacy Pass standard nukes CAPTCHAs

Apple is to support the new Privacy Pass standard, to “attest” that its users aren’t robots. Google is expected to be close behind.
Read More
Software supply chain alert: ‘7 million’ cleartext access tokens in Travis CI logs
June 16, 2022

Software supply chain alert: ‘7 million’ cleartext access tokens in Travis CI logs

Travis CI cleartext logs are trivially easy to access—all 770 million of them. And researchers have found lots of sensitive data in a sample.
Read More
A (partial) history of software supply chain attacks
June 14, 2022

A (partial) history of software supply chain attacks

SolarWinds put software supply chain hacks on the radar. But attacks aren’t new. In fact, they’re much older than you suspect! Here’s a (partial) history.
Read More
5 CI/CD breaches analyzed: Why you need to update your software security approach
June 14, 2022

5 CI/CD breaches analyzed: Why you need to update your software security approach

Omer Gil and Daniel Krivelevich outlined the top 10 CI/CD security risks at RSA Conference, analyzing five recent breaches. Here's what you need to know.
Read More

SUBSCRIBE

Subscribe to the develop.secure.software newsletter to stay up to speed, learn best practices and more.