Develop Secure Software logo
Packagist PHP repo supply chain attack: 3 key takeaways
October 12, 2022

Packagist PHP repo supply chain attack: 3 key takeaways

A PHP repository vulnerability threatened millions of sites. Here's why you need to make an SBOM the first step in your software supply chain security journey.
Read More
Memory-safe #RustLang shines with its day in the sun
October 6, 2022

Memory-safe #RustLang shines with its day in the sun

Don’t miss out on the new hotness (or on Linus’s rant). Have you woken up to the memory-safe language?
Read More
Gartner explains why SBOMs are critical to software supply chain security management
October 4, 2022

Gartner explains why SBOMs are critical to software supply chain security management

With modern software development practices leaning heavily on third-party sources — and attacks surging on that software supply chain — Gartner expects SBOM adoption to go from 5% to 60% in 2025.
Read More
DevOps teams: BGP security is BAD. But you can fix it
September 28, 2022

DevOps teams: BGP security is BAD. But you can fix it

Border Gateway Protocol’s security is laughable — but there are things you can do to mitigate the risks.
Read More
Threat analysis: Malicious npm package mimics Material Tailwind CSS tool
September 23, 2022

Threat analysis: Malicious npm package mimics Material Tailwind CSS tool

ReversingLabs has discovered a malicious npm package disguised as the software tool Material Tailwind. Here's an in-depth look at our discovery — and threat analysis. (Updated with MachO executable information.)
Read More
Rust finds its mojo: Move forward to memory-safe code
September 22, 2022

Rust finds its mojo: Move forward to memory-safe code

It’s confirmed: The Linux kernel will have Rust support soon. Linus Torvalds and Mark Russinovich say the time is now if you want to memory-safe code.
Read More

SUBSCRIBE

Subscribe to the develop.secure.software newsletter to stay up to speed, learn best practices and more.