Quality Conundrum: Relying on QA Tools Alone Increases Risk
Quality assurance, or QA, is one of the go-to solutions for organizations looking to enhance their application security (AppSec). But alone, they don???t provide enough coverage and can give your team a false sense of security that comes back to haunt you during audits, or worse: after a breach. QA ... Read More
State of Software Security: Open Source Edition – Key Takeaways for Developers
The popularity of open source libraries isn???t dwindling anytime soon. They???re critical for developer functionality, allowing teams of developers like yours to work faster so they can meet tight deadlines they face on the regular. But some developers may not fully understand the risks that come from using open source ... Read More
What Does it Take to Be an Effective Developer Manager?
If you???re a software engineer you???ve probably seen one or two of your colleagues graduate from Senior Developer to Developer Manager ??? some with the sobering realization that managing a team of developers requires significant cross-functional skillsets. Foundationally, to be a successful Developer Manager you must know your stuff when ... Read More
Why Fast Feedback Is Critical For Developer Success
In their book Agile Testing: A Practical Guide for Testers and Agile Teams (2008), Lisa Crispin and Janet Gregory wrote that one of the most important factors for success in software development is feedback. ???Feedback is a core agile value. The short iterations of agile are designed to provide constant ... Read More
Secure Development Without Sacrificing Innovation and Speed
If you know the term ???nightly build,??? chances are you???ve been a part of that process before. A nightly build - or code compiled overnight from previously checked code - is a foundational way to find flaws or issues that arise from changes made during long build processes. But while ... Read More
Frequency, Speed, and Accuracy Are a Match Made in AppSec Heaven
???Make it work, make it right, make it fast.??? These words from renowned software engineer Kent Beck will always ring true for developers, especially with the pace of development picking up, not slowing down. A GitLab survey from last year showed nearly half (43 percent) of respondents deploy software on-demand ... Read More
Cyberthreats During the Pandemic Are on the Rise
With the sudden shift to digital that many businesses are facing in response to the pandemic, preventing cyberattacks is more important than ever. According to the FBI, attacks related to COVID-19 have increased 400 percent in recent months. And with data from Gartner showing that 74 percent of companies expect ... Read More
Realigning Priorities and Building a Bridge Between Security and Development
It???s a common conundrum for application security (AppSec) teams??ヲhow can developers and security professionals work together to release software faster? It takes a working relationship, good communication, and the right tools, which most teams don???t have. Even more discouraging, stigmas follow both teams around the office; developers often worry that ... Read More
What Caused the SBA Flaw that Exposed Business Owners’ Personal Info?
Current events are reshaping the way we live our everyday lives, and taking a heavy toll on the business world, with organizations of all sizes feeling financial disruption. Business continuity is more essential than ever during the pandemic; not just for customers who rely on products and services, but also ... Read More
Future-Proofing Your AppSec With Veracode SaaS Solutions
Global events that force the world to go digital can put business needs into perspective, and fast. We???ve been impressed by how our customers are hitting the work-from-home curveball; with a little ingenuity and some help from Veracode solutions, their businesses are carrying on. In fact, ourツ?Static Analysisツ?scan numbers reached ... Read More
