Develop Secure Software logo
OWASP at a crossroads: Founder Mark Curphey's call for relevance in the age of DevSecOps
October 27, 2022

OWASP at a crossroads: Founder Mark Curphey's call for relevance in the age of DevSecOps

After two decades of raising awareness about the big problems in application security, the Open Web Application Security Project (OWASP) stands at a crossroads. Founder Mark Curphey outlines his manifesto for modernization.
Read More
Google pairs GUAC with SLSA to take a bite out of software supply chain insecurity
October 26, 2022

Google pairs GUAC with SLSA to take a bite out of software supply chain insecurity

Are you ready to dip into this tasty repo for better software security?
Read More
Devs: Don’t rely on GitHub Copilot — legal risk gets real
October 19, 2022

Devs: Don’t rely on GitHub Copilot — legal risk gets real

GitHub’s Copilot ML code-completion engine is violating copyright wholesale, say high-profile open source advocates.
Read More
Packagist PHP repo supply chain attack: 3 key takeaways
October 12, 2022

Packagist PHP repo supply chain attack: 3 key takeaways

A PHP repository vulnerability threatened millions of sites. Here's why you need to make an SBOM the first step in your software supply chain security journey.
Read More
Memory-safe #RustLang shines with its day in the sun
October 6, 2022

Memory-safe #RustLang shines with its day in the sun

Don’t miss out on the new hotness (or on Linus’s rant). Have you woken up to the memory-safe language?
Read More
Gartner explains why SBOMs are critical to software supply chain security management
October 4, 2022

Gartner explains why SBOMs are critical to software supply chain security management

With modern software development practices leaning heavily on third-party sources — and attacks surging on that software supply chain — Gartner expects SBOM adoption to go from 5% to 60% in 2025.
Read More

SUBSCRIBE

Subscribe to the develop.secure.software newsletter to stay up to speed, learn best practices and more.