DEV Community

SnykSec profile picture

SnykSec

Automatically find and fix vulnerabilities in your code, open source, and containers. Sign up for free at https://snyk.co/dev.to

Joined Joined on  Personal website https://snyk.co/dev.to github website
360 degrees of application security with Snyk
snyk_sec profile
SnykSec for Snyk

360 degrees of application security with Snyk

#applicationsecurity
Comments
6 min read

Want to connect with SnykSec?

Create an account to connect with SnykSec. You can also sign in below to proceed if you already have an account.

Create Account
Already have an account? Sign in
Responsibilities of a modern CISO
snyk_sec profile
SnykSec for Snyk

Responsibilities of a modern CISO

#compliance #devsecops
1
Comments
6 min read
Building an npm package compatible with ESM and CJS in 2024
snyk_sec profile
SnykSec for Snyk

Building an npm package compatible with ESM and CJS in 2024

#engineering #opensourcesecurity #javascript #node
2
Comments
4 min read
How to install Java on macOS
snyk_sec profile
SnykSec for Snyk

How to install Java on macOS

#applicationsecurity #containersecurity #opensourcesecurity #java
1
Comments
12 min read
An investigation into code injection vulnerabilities caused by generative AI
snyk_sec profile
SnykSec for Snyk

An investigation into code injection vulnerabilities caused by generative AI

#ai #codesecurity #engineering
Comments
4 min read
Nine Docker pro tips for Node.js developers
snyk_sec profile
SnykSec for Snyk

Nine Docker pro tips for Node.js developers

#containersecurity #docker #node
11
Comments
7 min read
Exploiting HTTP/2 CONTINUATION frames for DoS attacks
snyk_sec profile
SnykSec for Snyk

Exploiting HTTP/2 CONTINUATION frames for DoS attacks

#codesecurity #opensourcesecurity #go #node
1
Comments
4 min read
How Snyk ensures safe adoption of AI
snyk_sec profile
SnykSec for Snyk

How Snyk ensures safe adoption of AI

#ai #engineering
1
Comments
7 min read
Getting started with PHP static analysis in 2024
snyk_sec profile
SnykSec for Snyk

Getting started with PHP static analysis in 2024

#codesecurity #engineering #php
Comments
10 min read
Snyk users don't have to worry about NVD delays
snyk_sec profile
SnykSec for Snyk

Snyk users don't have to worry about NVD delays

#applicationsecurity
1
Comments
4 min read
GitHub “besieged” by malware repositories and repo confusion: Why you'll be ok
snyk_sec profile
SnykSec for Snyk

GitHub “besieged” by malware repositories and repo confusion: Why you'll be ok

#opensourcesecurity #python #ruby #javascript
4
Comments 1
8 min read
Snyk Learn and the NIST Cybersecurity Framework (CSF)
snyk_sec profile
SnykSec for Snyk

Snyk Learn and the NIST Cybersecurity Framework (CSF)

#applicationsecurity
3
Comments
3 min read
5 Node.js security code snippets every backend developer should know
snyk_sec profile
SnykSec for Snyk

5 Node.js security code snippets every backend developer should know

#applicationsecurity #codesecurity #javascript #node
2
Comments
9 min read
Copilot amplifies insecure codebases by replicating vulnerabilities in your projects
snyk_sec profile
SnykSec for Snyk

Copilot amplifies insecure codebases by replicating vulnerabilities in your projects

#ai #codesecurity
1
Comments
6 min read
Preventing SQL injection attacks in Node.js
snyk_sec profile
SnykSec for Snyk

Preventing SQL injection attacks in Node.js

#applicationsecurity #codesecurity #javascript #node
5
Comments
9 min read
Preventing server-side request forgery in Node.js applications
snyk_sec profile
SnykSec for Snyk

Preventing server-side request forgery in Node.js applications

#codesecurity #opensourcesecurity #javascript #node
2
Comments
8 min read
Automatic source locations with Rego
snyk_sec profile
SnykSec for Snyk

Automatic source locations with Rego

#cloudsecurity #rego #opa
1
Comments
10 min read
Creating SBOMs with the Snyk CLI
snyk_sec profile
SnykSec for Snyk

Creating SBOMs with the Snyk CLI

#opensourcesecurity #applicationsecurity #java #sbom
1
Comments
6 min read
Leaky Vessels deep dive: Escaping from Docker one syscall at a time
snyk_sec profile
SnykSec for Snyk

Leaky Vessels deep dive: Escaping from Docker one syscall at a time

#vulnerabilityinsights #ccpp #docker #kubernetes
Comments
45 min read
10 GitHub Security Best Practices
snyk_sec profile
SnykSec for Snyk

10 GitHub Security Best Practices

#codesecurity #devsecops #applicationsecurity #opensourcesecurity
3
Comments
14 min read
Buildkit GRPC SecurityMode privilege check: Build-time container breakout (CVE-2024-23653)
snyk_sec profile
SnykSec for Snyk

Buildkit GRPC SecurityMode privilege check: Build-time container breakout (CVE-2024-23653)

#containersecurity #vulnerabilityinsights #kubernetes #docker
5
Comments
5 min read
Vulnerability: runc process.cwd and leaked fds container breakout (CVE-2024-21626)
snyk_sec profile
SnykSec for Snyk

Vulnerability: runc process.cwd and leaked fds container breakout (CVE-2024-21626)

#containersecurity #vulnerabilityinsights #kubernetes #docker
3
Comments
5 min read
Buildkit mount cache race: Build-time race condition container breakout (CVE-2024-23651)
snyk_sec profile
SnykSec for Snyk

Buildkit mount cache race: Build-time race condition container breakout (CVE-2024-23651)

#containersecurity #vulnerabilityinsights #kubernetes #docker
1
Comments
5 min read
Buildkit build-time container teardown arbitrary delete (CVE-2024-23652)
snyk_sec profile
SnykSec for Snyk

Buildkit build-time container teardown arbitrary delete (CVE-2024-23652)

#containersecurity #vulnerabilityinsights #kubernetes #docker
1
Comments
4 min read
7 tips to become a successful bug bounty hunter
snyk_sec profile
SnykSec for Snyk

7 tips to become a successful bug bounty hunter

#codesecurity #opensourcesecurity
2
Comments
5 min read
Understanding and mitigating the Jinja2 XSS vulnerability (CVE-2024-22195)
snyk_sec profile
SnykSec for Snyk

Understanding and mitigating the Jinja2 XSS vulnerability (CVE-2024-22195)

#opensourcesecurity #python
2
Comments
5 min read
New Year's security resolutions for 2024 from Snyk DevRel, SecRel, and friends
snyk_sec profile
SnykSec for Snyk

New Year's security resolutions for 2024 from Snyk DevRel, SecRel, and friends

#applicationsecurity #ai #snykteam
2
Comments
5 min read
Common SAML vulnerabilities and how to remediate them
snyk_sec profile

Common SAML vulnerabilities and how to remediate them

#devsecops
2
Comments 1
4 min read
Vulnerability disclosure: Which comes first, the security bug in PHP or the CVE?
snyk_sec profile

Vulnerability disclosure: Which comes first, the security bug in PHP or the CVE?

#applicationsecurity #php
3
Comments
4 min read
Enhancing code to cloud security with the Common Configuration Scoring System
snyk_sec profile

Enhancing code to cloud security with the Common Configuration Scoring System

#applicationsecurity #codesecurity #cloudsecurity #aspm
5
Comments
5 min read
Secure password hashing in Go
snyk_sec profile

Secure password hashing in Go

#applicationsecurity #engineering #go
9
Comments 1
12 min read
Code injection in Python: examples and prevention
snyk_sec profile

Code injection in Python: examples and prevention

#codesecurity #python
2
Comments
8 min read
Handling security vulnerabilities in Spring Boot
snyk_sec profile

Handling security vulnerabilities in Spring Boot

#applicationsecurity #opensourcesecurity #java
4
Comments 2
6 min read
How to integrate ASPM with your application security program
snyk_sec profile

How to integrate ASPM with your application security program

#applicationsecurity #aspm
1
Comments
5 min read
Exploring WebExtension security vulnerabilities in React Developer Tools and Vue.js devtools
snyk_sec profile

Exploring WebExtension security vulnerabilities in React Developer Tools and Vue.js devtools

#applicationsecurity #codesecurity
2
Comments
6 min read
Rego 103: Types of values and rules
snyk_sec profile

Rego 103: Types of values and rules

#iacsecurity #cloudsecurity #rego #opa
5
Comments
13 min read
Rego for beginners Part 2: Combining queries with AND/OR and custom messages
snyk_sec profile

Rego for beginners Part 2: Combining queries with AND/OR and custom messages

#iacsecurity #cloudsecurity #rego #opa
Comments
10 min read
What’s new in CVSS 4.0
snyk_sec profile

What’s new in CVSS 4.0

#applicationsecurity #codesecurity
Comments
8 min read
Rego for beginners: Introduction to Rego
snyk_sec profile

Rego for beginners: Introduction to Rego

#cloudsecurity #iacsecurity #rego #opa
Comments
10 min read
Dependency injection in Python
snyk_sec profile

Dependency injection in Python

#opensourcesecurity #engineering #python
1
Comments
12 min read
The art of conditional rendering: Tips and tricks for React and Next.js developers
snyk_sec profile

The art of conditional rendering: Tips and tricks for React and Next.js developers

#engineering #opensourcesecurity
4
Comments 2
11 min read
Getting started with query parameterization
snyk_sec profile

Getting started with query parameterization

#codesecurity
Comments
9 min read
How to secure JavaScript applications right from the CLI
snyk_sec profile

How to secure JavaScript applications right from the CLI

#applicationsecurity #javascript #node
1
Comments 2
11 min read
How to keep an HTTP connection alive for 9 hours
snyk_sec profile

How to keep an HTTP connection alive for 9 hours

#engineering #ctf #java
11
Comments
10 min read
Securing symmetric encryption algorithms in Java
snyk_sec profile

Securing symmetric encryption algorithms in Java

#codesecurity #java
6
Comments
7 min read
GitHub Copilot code security: XSS in React
snyk_sec profile

GitHub Copilot code security: XSS in React

#ai #applicationsecurity #codesecurity #javascript
7
Comments 1
8 min read
Installing and managing Java on macOS
snyk_sec profile

Installing and managing Java on macOS

#engineering
7
Comments
5 min read
How to update cURL
snyk_sec profile

How to update cURL

#devsecops #engineering #opensourcesecurity #vulnerabilityinsights
3
Comments
8 min read
How to find and fix Critical WebP zero-day vulnerability CVE-2023-4863
snyk_sec profile

How to find and fix Critical WebP zero-day vulnerability CVE-2023-4863

#vulnerabilityinsights
1
Comments
6 min read
Modern VS Code extension development tutorial: Building a secure extension
snyk_sec profile

Modern VS Code extension development tutorial: Building a secure extension

#engineering #javascript #vscode
5
Comments 1
18 min read
Critical WebP 0-day security CVE-2023-4863 impacts wider software ecosystem
snyk_sec profile

Critical WebP 0-day security CVE-2023-4863 impacts wider software ecosystem

#containersecurity #vulnerabilityinsights #opensourcesecurity #docker
1
Comments
9 min read
10 best practices for securely developing with AI
snyk_sec profile

10 best practices for securely developing with AI

#ai
4
Comments
13 min read
Signing container images: Comparing Sigstore, Notary, and Docker Content Trust
snyk_sec profile

Signing container images: Comparing Sigstore, Notary, and Docker Content Trust

#containersecurity #docker #kubernetes
3
Comments
13 min read
How to prevent NullPointerExceptions in Java
snyk_sec profile

How to prevent NullPointerExceptions in Java

#codesecurity #java
5
Comments 6
10 min read
Modern VS Code extension development: The basics
snyk_sec profile

Modern VS Code extension development: The basics

#engineering #vscode
4
Comments
13 min read
Security implications of cross-origin resource sharing (CORS) in Node.js
snyk_sec profile

Security implications of cross-origin resource sharing (CORS) in Node.js

#applicationsecurity #codesecurity #javascript #node
5
Comments 1
11 min read
A guide to input validation with Spring Boot
snyk_sec profile

A guide to input validation with Spring Boot

#codesecurity #java
Comments
12 min read
How to avoid web cache poisoning attacks
snyk_sec profile

How to avoid web cache poisoning attacks

#applicationsecurity
Comments
8 min read
Top considerations for addressing risks in the OWASP Top 10 for LLMs
snyk_sec profile

Top considerations for addressing risks in the OWASP Top 10 for LLMs

#ai
3
Comments
13 min read
SocketSleuth: Improving security testing for WebSocket applications
snyk_sec profile

SocketSleuth: Improving security testing for WebSocket applications

#applicationsecurity
2
Comments
4 min read
loading...