Blog Archive

Code Security

Preventing broken access control in express Node.js applications

May 22, 2024

Application Security

How to secure Python Flask applications

May 21, 2024

Application Security

Symmetric vs. asymmetric encryption: Practical Python examples

May 15, 2024

Code Security

The ultimate guide to creating a secure Python package

May 8, 2024

Container Security

How Mulesoft fosters a developer-first, shift-left culture with Snyk

April 30, 2024

Engineering

Building an npm package compatible with ESM and CJS in 2024

April 18, 2024

Application Security

How to install Java on macOS

April 17, 2024

Engineering

Exploiting HTTP/2 CONTINUATION frames for DoS attacks

April 8, 2024

Application Security

The XZ backdoor CVE-2024-3094

March 31, 2024

Open Source Security

Securing your SBOM on Google Cloud

March 28, 2024

Code Security

GitHub “besieged” by malware repositories and repo confusion: Why you'll be ok

March 12, 2024

DevSecOps

How REI built a DevSecOps culture and how Snyk helped

February 27, 2024

Code Security

Preventing server-side request forgery in Node.js applications

February 20, 2024

Compliance

Creating SBOMs with the Snyk CLI

February 8, 2024

Code Security

10 GitHub Security Best Practices

February 5, 2024

Code Security

7 tips to become a successful bug bounty hunter

January 25, 2024

Open Source Security

Understanding and mitigating the Jinja2 XSS vulnerability (CVE-2024-22195)

January 18, 2024

Engineering

Mastering Python virtual environments: A complete guide to venv, Docker, and securing your code

January 10, 2024

Application Security

Krampus delivers an end-of-year Struts vulnerability

January 2, 2024

Code Security

Command injection in Python: examples and prevention

December 21, 2023

AI

Is your team on the *security* naughty or nice list?

December 20, 2023