Hardening SDLC
Securing Artifacts: Keyless Signing with Sigstore and CI/MON
Artifact integrity is crucial in maintaining software security and trustworthiness. High-profile breaches like SolarWinds, CodeCov, 3CX, and JumpCloud have shown how altering artifact contents can lead to significant security vulnerabilities, enabling attackers ...
Three Lessons from the Ledger Connect Kit Supply Chain Attack
On December 14, 2023, the crypto community held its breath as news of a critical compromise involving the Ledger Connect Kit, a vital software component connecting hardware wallets to dApps, hit the ...
Introducing an All-New Cycode: The Only Complete Approach to ASPM
There’s no surprise that in today’s lightning fast paced development environment, speed, and efficiency are non-negotiable... The post Introducing an All-New Cycode: The Only Complete Approach to ASPM appeared first on Cycode ...
Introducing Bulk Remediation for Software Composition Analysis (SCA)
Cycode Software Composition Analysis (SCA) now includes bulk remediation. This new feature allows users to efficiently address multiple vulnerabilities across different repositories... The post Introducing Bulk Remediation for Software Composition Analysis (SCA) ...
Application Security Posture Management (ASPM): Key Components for Complete Coverage
Application Security Posture Management (ASPM) is an AppSec platform that continuously assesses... The post Application Security Posture Management (ASPM): Key Components for Complete Coverage appeared first on Cycode ...
