Python

Store & manage secrets like API keys in Python - Tech Tip Tuesdays

Mar 14, 2023 By GitGuardian In GitGuardian

In this video, we explore how to securely manage secrets like API keys, passwords, credential pairs, and other sensitive information in python. We run through the basics of using environment variables and move onto more advanced senarios such as managing different secrets for multiple environments.

View Video

GitGuardian

Read more about Store & manage secrets like API keys in Python - Tech Tip Tuesdays

How to Ingest Data into Falcon LogScale Using Python

Feb 23, 2023 By Wil How In CrowdStrike

This post covers how to ingest data into CrowdStrike Falcon® LogScale from your MacOS platform using Python. This guide is great for setting up a one-node proof of concept (POC) so you can take advantage of LogScale’s free trial. Before you can write your ingest client, you must prepare a good foundation. That means preparing your MacOS instance via the following steps: Ready? Let’s get started.

Read Post

CrowdStrike

Read more about How to Ingest Data into Falcon LogScale Using Python

The dangers of setattr: Avoiding Mass Assignment vulnerabilities in Python

Feb 15, 2023 By Jack Hair In Snyk

Mass assignment, also known as autobinding or object injection, is a category of vulnerabilities that occur when user input is bound to variables or objects within a program. Mass assignment vulnerabilities are often the result of an attacker adding unexpected fields to an object to manipulate the logic of a program.

Read Post

Snyk

Read more about The dangers of setattr: Avoiding Mass Assignment vulnerabilities in Python

CSPRNG: Random algorithms need security too!

Feb 9, 2023 By Michael Biocchi In Snyk

If I throw a coin high up in the air, I know the outcome — it will either be heads or tails. However, I can’t predict which it will be. I will certainly be able to guess with a 50% chance, but I can’t be 100% certain. If I were to roll a die, my certainty becomes less (1 in 6). However, I still know what the output could be. Computers are great at many things, especially predictability. They are deterministic and creating a truly random number is impossible.

Read Post

Snyk

Read more about CSPRNG: Random algorithms need security too!

Using Python libraries for secure network communication

Jan 30, 2023 By Matt Jarvis In Snyk

Python is a popular and powerful programming language that is often used for building web applications, data analysis, and automation. One of the key challenges in such projects is ensuring the security of network communication, which can be vulnerable to various threats such as man-in-the-middle attacks and eavesdropping. Fortunately, Python offers a range of libraries for encrypting and securing network communication.

Read Post

Snyk

Read more about Using Python libraries for secure network communication

How to Handle Secrets in Python

Jan 25, 2023 By Guest Expert In GitGuardian

DevOps engineers must handle secrets with care. In this series, we summarize best practices for leveraging secrets with your everyday tools.

Read Post

GitGuardian

Read more about How to Handle Secrets in Python

4 Reasons why Python libraries are not secure

Jan 5, 2023 By Aurore Inara In Spectral

The Don’t Repeat Yourself (DRY) Principle is one of Python’s most used software development principles. It aims to reduce the repetition of software patterns and algorithms by using package libraries and boilerplate templates to improve product release efficiency.

Read Post

Spectral

Read more about 4 Reasons why Python libraries are not secure

Getting Started using Python and Bytesafe

Dec 5, 2022 By Bytesafe In Bytesafe

This video shows you how to use Python and Bytesafe to install secure packages.

View Video

Bytesafe

Read more about Getting Started using Python and Bytesafe

How to write tests in Python using doctest

Nov 21, 2022 By Mannan Tirmizi In Snyk

As developers, we often write test cases and comments to explain our code. Commenting improves the codebase’s readability and quality. Detailed comments can remind us why we implemented a specific functionality. They can also help other programmers understand, maintain, use, and expand codebases.

Read Post

Snyk

Read more about How to write tests in Python using doctest

PyPi Malware Stealing Discord and Roblox Payment Info

Nov 16, 2022 By Snyk In Snyk

In this livestream we dive into the latest set of malicious packages discovered by the Snyk security research team. We are joined by senior security researcher at Snyk Raul Onitza-Klugman as we also discuss how these findings came to be, what they mean for open source security, and some hypotheses about the future of supply chain security. Didn't catch the live stream? Ask all of your Snyk questions and we’ll do our very best to answer them in the comment section.

View Video

Snyk

Read more about PyPi Malware Stealing Discord and Roblox Payment Info

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Python

Store & manage secrets like API keys in Python - Tech Tip Tuesdays

How to Ingest Data into Falcon LogScale Using Python

The dangers of setattr: Avoiding Mass Assignment vulnerabilities in Python

CSPRNG: Random algorithms need security too!

Using Python libraries for secure network communication

How to Handle Secrets in Python

4 Reasons why Python libraries are not secure

Getting Started using Python and Bytesafe

How to write tests in Python using doctest

PyPi Malware Stealing Discord and Roblox Payment Info

Monthly Archive

Follow Us