Skip to content
Navigation menu
Search
Powered by
Search
Algolia
Search
Log in
Create account
DEV Community
Close
#
applicationsecurity
Follow
Hide
Posts
Left menu
đź‘‹
Sign in
for the ability to sort posts by
relevant
,
latest
, or
top
.
Right menu
Application Security vs. Software Security: Difference to Know
SignMyCode
SignMyCode
SignMyCode
Follow
Sep 27
Application Security vs. Software Security: Difference to Know
#
applicationsecurity
#
softwaresecurity
Comments
Add Comment
2 min read
The persistent threat: Why major vulnerabilities like Log4Shell and Spring4Shell remain significant
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Aug 31
The persistent threat: Why major vulnerabilities like Log4Shell and Spring4Shell remain significant
#
applicationsecurity
#
opensourcesecurity
#
java
Comments
Add Comment
4 min read
Integrating Governance, Processes, People, and Technology with Cloud-Native Application Protection Platforms (CNAPP)
Mark Wireman
Mark Wireman
Mark Wireman
Follow
Jul 22
Integrating Governance, Processes, People, and Technology with Cloud-Native Application Protection Platforms (CNAPP)
#
applicationsecurity
#
cloudnative
#
devops
#
security
Comments
Add Comment
8 min read
A denial of service Regex breaks FastAPI security
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Aug 1
A denial of service Regex breaks FastAPI security
#
applicationsecurity
#
python
1
 reaction
Comments
Add Comment
7 min read
The strategic value of a Security Champions Program.
Yettsy
Yettsy
Yettsy
Follow
Jul 6
The strategic value of a Security Champions Program.
#
securesoftware
#
applicationsecurity
#
securitychampion
#
webdev
6
 reactions
Comments
Add Comment
1 min read
Polyfill supply chain attack embeds malware in JavaScript CDN assets
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 27
Polyfill supply chain attack embeds malware in JavaScript CDN assets
#
applicationsecurity
#
opensourcesecurity
#
javascript
210
 reactions
Comments
6
 comments
5 min read
How to secure a REST API?
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 28
How to secure a REST API?
#
applicationsecurity
#
codesecurity
#
opensourcesecurity
2
 reactions
Comments
Add Comment
11 min read
Breaking caches and bypassing Istio RBAC with HTTP response header injection
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 21
Breaking caches and bypassing Istio RBAC with HTTP response header injection
#
applicationsecurity
#
codesecurity
2
 reactions
Comments
Add Comment
11 min read
Integrating the Snyk Language Server with IntelliJ IDEs
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 18
Integrating the Snyk Language Server with IntelliJ IDEs
#
applicationsecurity
Comments
1
 comment
2 min read
Essential Node.js backend examples for developers in 2024
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 13
Essential Node.js backend examples for developers in 2024
#
applicationsecurity
#
codesecurity
#
javascript
#
node
6
 reactions
Comments
2
 comments
10 min read
OWASP® Cornucopia 2.0
johan sydseter
johan sydseter
johan sydseter
Follow
for
OWASP® Foundation
Jun 10
OWASP® Cornucopia 2.0
#
owasp
#
applicationsecurity
#
cornucopia
#
cybersecurity
24
 reactions
Comments
1
 comment
6 min read
Create your own card game with OWASP® Cornucopia
johan sydseter
johan sydseter
johan sydseter
Follow
for
OWASP® Foundation
Jun 17
Create your own card game with OWASP® Cornucopia
#
owasp
#
cybersecurity
#
applicationsecurity
#
cornucopia
Comments
2
 comments
2 min read
Fastify plugins as building blocks for a backend Node.js API
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
May 29
Fastify plugins as building blocks for a backend Node.js API
#
applicationsecurity
#
javascript
#
node
6
 reactions
Comments
Add Comment
10 min read
How to secure Python Flask applications
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
May 22
How to secure Python Flask applications
#
applicationsecurity
#
opensourcesecurity
#
python
26
 reactions
Comments
Add Comment
17 min read
How to install Java on macOS
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Apr 18
How to install Java on macOS
#
applicationsecurity
#
containersecurity
#
opensourcesecurity
#
java
1
 reaction
Comments
Add Comment
12 min read
Symmetric vs. asymmetric encryption: Practical Python examples
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
May 16
Symmetric vs. asymmetric encryption: Practical Python examples
#
applicationsecurity
#
codesecurity
#
opensourcesecurity
#
python
3
 reactions
Comments
Add Comment
16 min read
Snyk CLI: Introducing Semantic Versioning and release channels
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
May 1
Snyk CLI: Introducing Semantic Versioning and release channels
#
codesecurity
#
applicationsecurity
#
security
2
 reactions
Comments
Add Comment
4 min read
360 degrees of application security with Snyk
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Apr 25
360 degrees of application security with Snyk
#
applicationsecurity
3
 reactions
Comments
Add Comment
6 min read
Snyk Learn and the NIST Cybersecurity Framework (CSF)
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Mar 7
Snyk Learn and the NIST Cybersecurity Framework (CSF)
#
applicationsecurity
3
 reactions
Comments
Add Comment
3 min read
5 Node.js security code snippets every backend developer should know
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Feb 29
5 Node.js security code snippets every backend developer should know
#
applicationsecurity
#
codesecurity
#
javascript
#
node
2
 reactions
Comments
Add Comment
9 min read
Preventing SQL injection attacks in Node.js
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Feb 22
Preventing SQL injection attacks in Node.js
#
applicationsecurity
#
codesecurity
#
javascript
#
node
9
 reactions
Comments
Add Comment
9 min read
10 GitHub Security Best Practices
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Feb 6
10 GitHub Security Best Practices
#
codesecurity
#
devsecops
#
applicationsecurity
#
opensourcesecurity
3
 reactions
Comments
Add Comment
14 min read
New Year's security resolutions for 2024 from Snyk DevRel, SecRel, and friends
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jan 19
New Year's security resolutions for 2024 from Snyk DevRel, SecRel, and friends
#
applicationsecurity
#
ai
#
snykteam
2
 reactions
Comments
Add Comment
5 min read
Vulnerability disclosure: Which comes first, the security bug in PHP or the CVE?
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Dec 20 '23
Vulnerability disclosure: Which comes first, the security bug in PHP or the CVE?
#
applicationsecurity
#
php
3
 reactions
Comments
Add Comment
4 min read
How to integrate ASPM with your application security program
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Nov 29 '23
How to integrate ASPM with your application security program
#
applicationsecurity
#
aspm
1
 reaction
Comments
Add Comment
5 min read
Enhancing code to cloud security with the Common Configuration Scoring System
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Dec 16 '23
Enhancing code to cloud security with the Common Configuration Scoring System
#
applicationsecurity
#
codesecurity
#
cloudsecurity
#
aspm
5
 reactions
Comments
Add Comment
5 min read
Exploring WebExtension security vulnerabilities in React Developer Tools and Vue.js devtools
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Nov 28 '23
Exploring WebExtension security vulnerabilities in React Developer Tools and Vue.js devtools
#
applicationsecurity
#
codesecurity
2
 reactions
Comments
Add Comment
6 min read
Secure password hashing in Go
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Dec 7 '23
Secure password hashing in Go
#
applicationsecurity
#
engineering
#
go
10
 reactions
Comments
1
 comment
12 min read
Handling security vulnerabilities in Spring Boot
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Nov 30 '23
Handling security vulnerabilities in Spring Boot
#
applicationsecurity
#
opensourcesecurity
#
java
6
 reactions
Comments
2
 comments
6 min read
What’s new in CVSS 4.0
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Nov 9 '23
What’s new in CVSS 4.0
#
applicationsecurity
#
codesecurity
Comments
Add Comment
8 min read
How to secure JavaScript applications right from the CLI
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Oct 25 '23
How to secure JavaScript applications right from the CLI
#
applicationsecurity
#
javascript
#
node
1
 reaction
Comments
2
 comments
11 min read
GitHub Copilot code security: XSS in React
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Oct 20 '23
GitHub Copilot code security: XSS in React
#
ai
#
applicationsecurity
#
codesecurity
#
javascript
5
 reactions
Comments
1
 comment
8 min read
Streamline dependency updates with Mergify and Snyk
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Aug 24 '23
Streamline dependency updates with Mergify and Snyk
#
applicationsecurity
#
opensourcesecurity
1
 reaction
Comments
Add Comment
7 min read
SocketSleuth: Improving security testing for WebSocket applications
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Sep 7 '23
SocketSleuth: Improving security testing for WebSocket applications
#
applicationsecurity
2
 reactions
Comments
Add Comment
4 min read
Security implications of cross-origin resource sharing (CORS) in Node.js
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Sep 14 '23
Security implications of cross-origin resource sharing (CORS) in Node.js
#
applicationsecurity
#
codesecurity
#
javascript
#
node
3
 reactions
Comments
1
 comment
11 min read
How to avoid web cache poisoning attacks
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Sep 12 '23
How to avoid web cache poisoning attacks
#
applicationsecurity
1
 reaction
Comments
Add Comment
8 min read
Does GitOps enhance application security?
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Aug 22 '23
Does GitOps enhance application security?
#
applicationsecurity
#
docker
1
 reaction
Comments
Add Comment
4 min read
Can machines dream of secure code? From AI hallucinations to software vulnerabilities
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Aug 17 '23
Can machines dream of secure code? From AI hallucinations to software vulnerabilities
#
ai
#
applicationsecurity
#
javascript
10
 reactions
Comments
Add Comment
9 min read
XS leaks: What they are and how to avoid them
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jul 18 '23
XS leaks: What they are and how to avoid them
#
applicationsecurity
#
codesecurity
#
javascript
1
 reaction
Comments
Add Comment
9 min read
How to strengthen security in your CI/CD pipeline
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jul 13 '23
How to strengthen security in your CI/CD pipeline
#
supplychainsecurity
#
applicationsecurity
#
devsecops
#
cicd
3
 reactions
Comments
Add Comment
8 min read
.NET developers alert: Moq NuGET package exfiltrates user emails from git
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Aug 10 '23
.NET developers alert: Moq NuGET package exfiltrates user emails from git
#
applicationsecurity
#
opensourcesecurity
#
dotnet
7
 reactions
Comments
Add Comment
4 min read
How secure is WebAssembly? 5 security concerns unique to WebAssembly
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jul 29 '23
How secure is WebAssembly? 5 security concerns unique to WebAssembly
#
applicationsecurity
#
codesecurity
#
javascript
6
 reactions
Comments
Add Comment
6 min read
8 tips for securing your CI/CD pipeline with Snyk
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jul 21 '23
8 tips for securing your CI/CD pipeline with Snyk
#
applicationsecurity
#
devsecops
#
cicd
2
 reactions
Comments
Add Comment
17 min read
Finding and fixing insecure direct object references in Python
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jul 20 '23
Finding and fixing insecure direct object references in Python
#
applicationsecurity
#
codesecurity
#
opensourcesecurity
#
python
1
 reaction
Comments
Add Comment
6 min read
Using insecure npm package manager defaults to steal your macOS keyboard shortcuts
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 29 '23
Using insecure npm package manager defaults to steal your macOS keyboard shortcuts
#
applicationsecurity
#
opensourcesecurity
#
javascript
#
node
Comments
Add Comment
5 min read
Level up your security skillset with New Relic
Harry Kimpel
Harry Kimpel
Harry Kimpel
Follow
for
New Relic
Jun 22 '23
Level up your security skillset with New Relic
#
devsecops
#
applicationsecurity
#
vulnerabilities
#
observability
Comments
Add Comment
6 min read
Ethical hacking techniques
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 21 '23
Ethical hacking techniques
#
applicationsecurity
#
devsecops
1
 reaction
Comments
Add Comment
7 min read
How to prevent XPath injection attacks
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 21 '23
How to prevent XPath injection attacks
#
applicationsecurity
#
codesecurity
#
vulnerabilityinsights
#
java
4
 reactions
Comments
Add Comment
8 min read
The importance of platform engineers in a security program
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 21 '23
The importance of platform engineers in a security program
#
applicationsecurity
#
devsecops
#
engineering
#
cicd
1
 reaction
Comments
Add Comment
4 min read
A quick primer on LDAP injection
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 21 '23
A quick primer on LDAP injection
#
applicationsecurity
#
vulnerabilityinsights
1
 reaction
Comments
Add Comment
6 min read
How to perform JavaBeans Validation
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 21 '23
How to perform JavaBeans Validation
#
codesecurity
#
applicationsecurity
#
java
4
 reactions
Comments
Add Comment
7 min read
Data loss prevention for developers
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 21 '23
Data loss prevention for developers
#
applicationsecurity
1
 reaction
Comments
Add Comment
10 min read
The SecurityManager is getting removed in Java: What that means for you
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jun 21 '23
The SecurityManager is getting removed in Java: What that means for you
#
applicationsecurity
#
codesecurity
#
java
1
 reaction
Comments
Add Comment
10 min read
Gitpod remote code execution 0-day vulnerability via WebSockets
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Mar 6 '23
Gitpod remote code execution 0-day vulnerability via WebSockets
#
applicationsecurity
#
casestudies
#
cloudnativesecurity
#
vulnerabilities
Comments
Add Comment
9 min read
Node.js multithreading with worker threads: pros and cons
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Mar 6 '23
Node.js multithreading with worker threads: pros and cons
#
applicationsecurity
#
engineering
1
 reaction
Comments
2
 comments
9 min read
The security concerns of a JavaScript sandbox with the Node.js VM module
Liran Tal
Liran Tal
Liran Tal
Follow
for
Snyk
Mar 13 '23
The security concerns of a JavaScript sandbox with the Node.js VM module
#
applicationsecurity
4
 reactions
Comments
Add Comment
5 min read
Using Python libraries for secure network communication
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Feb 6 '23
Using Python libraries for secure network communication
#
applicationsecurity
3
 reactions
Comments
Add Comment
4 min read
Adding security to Nuxt 3
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jan 30 '23
Adding security to Nuxt 3
#
applicationsecurity
#
engineering
2
 reactions
Comments
Add Comment
4 min read
You should be using HTTP Strict Transport Security (HSTS) headers in your Node.js server
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jan 9 '23
You should be using HTTP Strict Transport Security (HSTS) headers in your Node.js server
#
applicationsecurity
#
ecosystems
#
engineering
2
 reactions
Comments
Add Comment
7 min read
5 “no experience needed” tips for building secure applications
SnykSec
SnykSec
SnykSec
Follow
for
Snyk
Jan 11 '23
5 “no experience needed” tips for building secure applications
#
applicationsecurity
#
opensource
Comments
Add Comment
5 min read
loading...
We're a place where coders share, stay up-to-date and grow their careers.
Log in
Create account