develop.secure.software | Practical knowledge for dev and release teams

Secure Software Blogwatch

Rejoice, devs and all! Privacy Pass standard nukes CAPTCHAs

Richi Jennings

Apple is to support the new Privacy Pass standard, to “attest” that its users aren’t robots. Google is expected to be...

Software Supply Chain Security

Richi Jennings

Travis CI cleartext logs are trivially easy to access—all 770 million of them. And researchers have found lots of...

Secure Software Blogwatch

Richi Jennings

The solution to use-after-free bugs is to *not* free memory. Google’s Chrome team is the latest group to jump on the...

Secure Software Blogwatch

Richi Jennings

Software engineers are engineers. So why don’t we regulate them—as we do other professions that build critical...

Secure Software Blogwatch

Richi Jennings

Apple is to support the new Privacy Pass standard, to “attest” that its users aren’t robots. Google is expected to be...

Software Supply Chain Security

Richi Jennings

Travis CI cleartext logs are trivially easy to access—all 770 million of them. And researchers have found lots of...

Secure Software Blogwatch

Richi Jennings

The solution to use-after-free bugs is to *not* free memory. Google’s Chrome team is the latest group to jump on the...

Secure Software Blogwatch

Richi Jennings

Software engineers are engineers. So why don’t we regulate them—as we do other professions that build critical...