Blog Archive

Engineering

Exploiting HTTP/2 CONTINUATION frames for DoS attacks

April 8, 2024

Code Security

Getting started with PHP static analysis in 2024

March 21, 2024

Code Security

GitHub “besieged” by malware repositories and repo confusion: Why you'll be ok

March 12, 2024

AI

5 security best practices for adopting generative AI code assistants like GitHub Copilot

March 5, 2024

Application Security

5 Node.js security code snippets every backend developer should know

February 28, 2024

DevSecOps

How REI built a DevSecOps culture and how Snyk helped

February 27, 2024

AI

Copilot amplifies insecure codebases by replicating vulnerabilities in your projects

February 22, 2024

Code Security

Preventing server-side request forgery in Node.js applications

February 20, 2024

Application Security

Preventing SQL injection attacks in Node.js

February 20, 2024

AI

Snyk & Atlassian: How to embed security in AI-assisted software development

February 14, 2024

Code Security

10 GitHub Security Best Practices

February 5, 2024

Code Security

7 tips to become a successful bug bounty hunter

January 25, 2024

AI

How to choose a security tool for your AI-generated code

January 9, 2024

Application Security

Krampus delivers an end-of-year Struts vulnerability

January 2, 2024

Code Security

Command injection in Python: examples and prevention

December 21, 2023

AI

Is your team on the *security* naughty or nice list?

December 20, 2023

Application Security

Enhancing code to cloud security with the Common Configuration Scoring System

December 14, 2023

Code Security

Code injection in Python: examples and prevention

December 6, 2023

Code Security

Accelerate C/ C++ security with Snyk

December 5, 2023

Application Security

Exploring WebExtension security vulnerabilities in React Developer Tools and Vue.js devtools

November 27, 2023

Application Security

Real-time threat protection with Snyk and SentinelOne

November 9, 2023