Secure Coding

Anthropic’s Project Glasswing: Finds Zero‑Days (Claude Mythos) — Cybersecurity Wake‑Up Call?

Project Glasswing: When AI Becomes the Ultimate Hacker—and Defender

| | AI Hacking, Anthropic, Artificial Intelligence, bug bounty, claude-mythos, Compliance, cyber defense, Cybersecurity, Digital Privacy, Episodes, HIPAA, nation state threats, Offensive Security, Open Source Security, Penetration Testing, Podcast, Privacy, Project Glasswing, Secure Coding, software-vulnerabilities, surveillance, Vulnerability Disclosure, Weekly Edition, zero-day vulnerabilities
Anthropic has introduced Project Glasswing, a cybersecurity initiative powered by an unreleased AI model called Claude Mythos. This system can identify zero-day vulnerabilities, generate exploits, and even help fix them—often without human ...
Shared Security Podcast
Threat Modeling with AI: A Developer-Driven Boon for Enterprise Security 

Threat Modeling with AI: A Developer-Driven Boon for Enterprise Security 

| | AI tooling, AI-assisted threat modeling, AppSec collaboration, Attack Surface, Automation, continuous threat modeling, developer upskilling, developer-centric security, developers in security, governance, IDE integration, iot threats, LLMs in security, pattern recognition, proactive resilience, risk tooling, scalable defenses., Secure Coding, Security Culture, security proficiency, shift left, Supply Chain Risk, Threat Modeling, traceability, Vulnerability Remediation
For companies running a modern, adaptive and defense-centered security program, threat modeling is not a new concept. In fact, it’s one of the core tenets of preventative cybersecurity best practices. Being able ...
Security Boulevard
Power Secure Swift Development at Scale With Sonatype Nexus Repository

Power Secure Swift Development at Scale With Sonatype Nexus Repository

| | application development, dependencies, Nexus Repository, Package Managers, Secure Coding, secure software supply chain, Sonatype Nexus Repository
From its beginnings as a language for Apple platforms, Swift Package Manager has expanded its reach considerably. It now powers a wide range of mobile, desktop, and server-side applications, as well as ...
2024 Sonatype Blog
GenAI, multimodal ai, AI agents, CISO, AI, Malware, DataKrypto, Tumeryk,

Securing AI-Generated Code in Enterprise Applications: The New Frontier for AppSec Teams 

| | AI code governance, AI Generated Code, AI security tools, AI vulnerabilities, AI-assisted development, Application Security, Business Logic Vulnerabilities, code provenance, DAST, developer training, DevSecOps, Fuzz Testing, LLM risks, logic flaws, runtime instrumentation, SAST, secure AI usage, Secure Coding, Secure SDLC, security copilots, shadow code, shift left, software assurance, think-wide
AI-generated code is reshaping software development and introducing new security risks. Organizations must strengthen governance, expand testing and train developers to ensure AI-assisted coding remains secure and compliant ...
Security Boulevard
The Shift Toward Unified Platforms in Application Security

The Shift Toward Unified Platforms in Application Security

| | Artificial Intelligence, Gartner, generative AI, Secure Coding, Software Security
Modern software delivery has never been more complex, or more interconnected ...
2024 Sonatype Blog
database, Real-time, data, data governance, concentric, ai, AWS, amazon, cloud, security, tools, Bedrock, data security, data breach, third parties, searchlight, data, AWS, Amazon, cloud security, just-in-time, security, Snyk, cloud, data, data lake, data, cloud storage, next-generation, cloud-native, cloud security, organizations, endpoint data Trend Micro

Designing Security for Developers, Not Around Them 

| | AI code vulnerabilities, AI coding tools, AI data governance, AI pipelines, AI Risk Management, AI Security, AI-powered development, ChatGPT security risks, cloud data security, Data Privacy, data protection, Data Tokenization, Developer Productivity, developer-first security, early-stage security, GenAI, James Rice, McKinsey AI study, Privacy By Design, Protegrity, Secure Coding, secure development lifecycle, secure software development, Software Security, synthetic data, Tokenization
GenAI boosts developer productivity—but also risk. Learn how developer-first security embeds data protection early, securing code and AI pipelines from the start ...
Security Boulevard

How AI and Vibe Coding Are Changing the Rules of Software Security

| | Artificial Intelligence, Gartner, generative AI, Secure Coding, Software Security
Software development is evolving at an unprecedented pace. Today's developers do far more than simply write lines of code ...
2024 Sonatype Blog
The Developer's Hippocratic Oath in the Age of AI

The Developer’s Hippocratic Oath in the Age of AI

| | Artificial Intelligence, code quality, developers, generative AI, Secure Coding, Software Development, Thought Leaders
The best software developers I've had the privilege to work with live by the principle that they have ultimate responsibility for the code we introduce. They take ownership of what they write, ...
2024 Sonatype Blog
The Laws of Software Haven't Changed. We're Just Choosing to Forget Them

The Laws of Software Haven’t Changed. We’re Just Choosing to Forget Them

| | Artificial Intelligence, generative AI, governance, Secure Coding, secure software supply chain
We're in the middle of something that feels like a renaissance — a golden age of software creation that's less about syntax and more about prompting. At Black Hat 2025 last week, ...
2024 Sonatype Blog
Secure mobile applications with Dart, Flutter, and Sonatype

Secure mobile applications with Dart, Flutter, and Sonatype

| | Application Security, dependencies, mobile application, open source risk, Secure Coding
The Dart coding language and the Flutter framework architecture are gaining traction among developers looking to build fast, reliable, cross-platform applications ...
2024 Sonatype Blog
Load more