How to Perform Continuous, Non-Blocking Code Reviews
If you own an Internet-based enterprise, your main branch powers your business and should be protected at all costs. Code reviews are how engineering...
01/09/2024
Thousands of New SAST Rules Added With Semgrep Integration
If 2023 taught us anything, it’s that code quality and code security are inextricably linked. Their main commonality? They are both required upstream...
01/09/2024
The Role of SAST and DAST Tools in API Security
APIs—Application Programming Interfaces—help software talk to other software. They make it easier to build applications because developers can plug...
30/08/2024
The Role of SAST and DAST Tools in Threat Modeling
Imagine preparing for storm season. You check your windows, bring in your bike or kids’ toys from the yard, trim your tree branches, ensure your...
15/08/2024
Understanding Server-Side Request Forgery (SSRF) and How to Prevent It
Server-Side Request Forgery (SSRF) is a critical web vulnerability that allows attackers to trick a server into making unauthorized requests to...
10/08/2024
Key Management: A Complete Guide
Imagine managing physical keys and passcodes for various physical locks. You have a key for the front door, another for your office, a few spares, and...