%term

The latest News and Information on Application Security including monitoring, testing, and open source.

How to Scale Developer Security Using Snyk (Demo)

Dec 9, 2021 By Snyk In Snyk

Emerging cloud-native technologies have shifted and expanded the scope of AppSec as we know it. Digital transformation and scale now hinges on developers’ ability to build and deploy rapidly – and doing so securely. Snyk’s developer security platform is designed to work like a developer tool – making it not only easy to find issues but to fix them quickly. In this recorded webinar, Jim Armstrong walks through a demo to show how developers can secure their proprietary code, open source libraries, container images, and infrastructure as code deployments.

View Video

Snyk

Read more about How to Scale Developer Security Using Snyk (Demo)

Part 3: Using Veracode From the Command Line in Cloud9 IDE

Dec 2, 2021 By Hope Goslin In Veracode

In part three of a four-part series, Clint Pollock, principal solutions architect at Veracode, details how to use Veracode from the command line in the Cloud9 IDE to submit a software composition analysis (SCA) scan. Check out the video and step-by-step instructions below. It’s Clint Pollock, principal solutions architect, back again for part three of our four-part series on using Veracode from the command line in Cloud9 IDE.

Read Post

Veracode

Read more about Part 3: Using Veracode From the Command Line in Cloud9 IDE

Don't Let Code Injections Mess Up Your Holiday eCommerce Season

Nov 23, 2021 By Shanice Jones In Veracode

The holidays are right around the corner. It’s a well-deserved time to spend with your friends and family, and it likely translates to increased online sales. But more eCommerce activity also means increased cybersecurity risks. Most organizations with eCommerce deploy cybersecurity measures such as Content Security Policies (CPSs), to help secure their site and protect their customer’s personally identifiable information from a breach.

Read Post

Veracode

Read more about Don't Let Code Injections Mess Up Your Holiday eCommerce Season

Veracode and Github Integration

Nov 22, 2021 By Veracode In Veracode

This video shows how to integrate Veracode’s Static Analysis solution to automate scans and consume results in the GitHub platform.

View Video

Veracode

Read more about Veracode and Github Integration

Create an API Specification Scan

Nov 19, 2021 By Veracode In Veracode

Traditionally Veracode Dynamic Analysis has targeted applications with a Web user interface. But increasingly, web applications are composed of many small microservices, many of which have Representational State Transfer (REST) interfaces with which the UI layer communicates. With API scanning, you can now scan the APIs of your microservices earlier in the software development process, before they are integrated into a web application.

View Video

Veracode

Read more about Create an API Specification Scan

Part 2: Using Veracode From the Command Line in Cloud9 IDE

Nov 18, 2021 By Clint Pollock In Veracode

In part two of a four-part series, Clint Pollock, principal solutions architect at Veracode, details how to use Veracode from the command line in the Cloud9 IDE to submit a static pipeline scan. Check out the video and step-by-step instructions below. It’s Clint Pollock, principal solutions architect, back for part two of our four-part series on using Veracode from the command line in Cloud9 IDE.

Read Post

Veracode

Read more about Part 2: Using Veracode From the Command Line in Cloud9 IDE

EWF Conference: Plotting the Course for Your Personal Brand

Nov 18, 2021 By Hope Goslin In Veracode

“Why focus on building your personal brand?” This was the first question that Elana Anderson, Chief Marketing Officer at Veracode, asked during her presentation Plotting the Course for Your Personal Brand at the recent Executive Women’s Forum (EWF). Anderson, a lifelong student of marketing, and a former analyst at Forrester Research, has a deep understanding of the importance of both corporate and personal brands and the steps necessary to both build and maintain a brand.

Read Post

Veracode

Read more about EWF Conference: Plotting the Course for Your Personal Brand

Announcing automated fixes for vulnerabilities in .NET dependencies

Nov 17, 2021 By Daniel Berman In Snyk

We’re pleased to announce improved support for.NET applications in Snyk Open Source, allowing developers to fix vulnerabilities in.NET dependencies with the help of actionable advice and automated pull requests! As of the time of writing, NuGet, the Microsoft-supported and de-facto standard package manager for.NET, has 276,266 unique packages, downloaded on average more than a billion times a week!

Read Post

Snyk

Read more about Announcing automated fixes for vulnerabilities in .NET dependencies

AppSec during hypergrowth: Empower your developers to overcome the tech talent shortage

Nov 15, 2021 By Jim Armstrong In Snyk

Many high-growth technology startups are pressured to deliver applications to market ahead of fast-moving competitors. It’s all too easy to allow a “we’ll get to that eventually” mentality to creep in when competing priorities appear to force a tradeoff with development velocity. This introduces unnecessary risks, but they can be mitigated by implementing an effective AppSec program that involves the right tools, processes, and mindset.

Read Post

Snyk

Read more about AppSec during hypergrowth: Empower your developers to overcome the tech talent shortage

Veracode Named Top 100 Women-Led Business in Massachusetts by the Commonwealth Institute and The Boston Globe

Nov 15, 2021 By Hope Goslin In Veracode

Veracode was recently recognized by the Commonwealth Institute and Boston Globe Magazine as a Top 100 Women-Led Business in Massachusetts. The honor, which was awarded to Veracode’s CEO, Sam King, is given to female leaders across multiple industries who are at the helm of Massachusetts’ most noteworthy companies.

Read Post