Develop Secure Software logo
The state of DevSecOps: Where teams and tools are at—and where they're going
July 14, 2022

The state of DevSecOps: Where teams and tools are at—and where they're going

Making security part of development and release demands modern tools — and empowering your software team. Here's what you need to know.
Read More
Devs: Prep for PQC — post-quantum cryptography
July 14, 2022

Devs: Prep for PQC — post-quantum cryptography

Experts say we need new key-exchange and signature algorithms, to resist attacks from quantum computing. Orgs have had a go, but now NIST has weighed in.
Read More
Devs: Don’t do DIY cryptography — Police CyberAlarm shows why
July 7, 2022

Devs: Don’t do DIY cryptography — Police CyberAlarm shows why

It’s a truism often repeated: Don’t roll your own cryptography! The Police CyberAlarm service deftly shows why.
Read More
Copilot's rocky takeoff: GitHub ‘steals code’
June 30, 2022

Copilot's rocky takeoff: GitHub ‘steals code’

Should you use GitHub Copilot? “No,” say open-source fans. “Heck no,” say lawyers. “Yeah,” say the sort of devs who do Stack Exchange copypasta.
Read More
Rejoice, devs and all! Privacy Pass standard nukes CAPTCHAs
June 23, 2022

Rejoice, devs and all! Privacy Pass standard nukes CAPTCHAs

Apple is to support the new Privacy Pass standard, to “attest” that its users aren’t robots. Google is expected to be close behind.
Read More
How to make C++ memory-safe? Chrome targets UAF bugs with garbage collection
June 7, 2022

How to make C++ memory-safe? Chrome targets UAF bugs with garbage collection

The solution to use-after-free bugs is to *not* free memory. Google’s Chrome team is the latest group to jump on the “temporal memory safety” bandwagon.
Read More

SUBSCRIBE

Subscribe to the develop.secure.software newsletter to stay up to speed, learn best practices and more.