A Developer’s View: What Kind of AST Event Correlation Is Needed in MAD?
Having AST capabilities built into the tooling that we use in our day-to-day tasks as developers provides a lot of value when we’re trying ..
A Developer’s View of Modern Application Development and Cloud-Native Approaches
The way that we build software has changed dramatically in recent years. Modern Application Development (MAD) and cloud-native development ..
What Are the Challenges With Securing APIS?
When you expose API services to the public internet, you are responsible not only for their reliable operation, but also for their security. ..
What Is Your API Attack Surface
The proliferation of APIs today is astonishing. According to a recent report, the number of active APIs will approach 1.7 billion by 2030. ..
APIs Are Great – But Only If You Manage API Sprawl and Security Risks
If you had to find an analogy for the explosive growth of APIs over the past decade, you might choose to compare them to cell phones. Like ..
Considerations and Steps for Adopting Managed AppSec Security Tests
At least, that’s one question you may be asking yourself if you’re trying to decide how to optimize your business’s approach to application ..
Key Considerations for Building a Proper AppSec Program for Modern Application Development
Many firms’ security efforts are focused solely on deploying technologies, applying “best practices,” and responding to a never-ending ..
The Case for Outsourcing AppSec Testing to a Managed Service Provider
Businesses commonly turn to managed service providers to help handle IT processes like data backup and recovery, network management, and mobility ..
Understanding the Development Best Practices Landscape for Modern Secure Application Development
Modern Application Development (MAD) is an approach to developing software applications using cloud-native technologies. The main idea ..
Align Different Perspectives to Implement AppSec
The ultimate goal of any organization that has decided to build a new application is to create a product which will be used to support a specific ..
What Does a Code Pipeline Look Like in Modern Application Development
Modern Application Development (or MAD) is a set of development methodologies that enables organizations to reduce their time-to-market ..
What, How, and Where Open Source Gets Pulled into a Codebase
The vast majority of software developers in the industry today are paid to solve business problems. Regardless of whether they work for small ..
What Does It Take To Be a Security Champion on a Modern AppDev Team?
Application security has always been important. But since organizations are constantly moving towards shorter development cycles, increased ..
A Developer’s View: How Attackers Can Infect Open Source Codebases
Most open source projects welcome contributions from anyone. That’s one of the key strengths of open source development as a whole ..
A Developer’s View: The Move to Cloud-Native is Here
“Cloud-native” is a technical term that describes the general tendency to move software systems from a hosted environment to a public ..
A Developer’s View: What Exactly Is Modern Application Development?
What is modern application development? That may sound like an impossible question to answer. Not only is “modern” a relative and subjective ..
Why You Need an Accurate “Parts List” for Your Software
With the mass adoption of open source software in recent years, there has been an increasing tendency to include it as dependencies. This ..
A Developer’s List of Key Container Security Risks
There are a variety of excellent reasons to use containers. They’re more agile and consume fewer resources than virtual machines. They ..
A Developer’s Guide to Managing Open Source Risks
We’re living in an open source world. If you’re a developer today, it’s very likely that – no matter where you work or what type ..