static code analysis

Welcome to the AI Development Era: Vibe Coding, MCP, and Slopsquatting Explained #podcast

What Vibe Coding, MCP, and Slopsquatting Reveal About the Future of AI Development

| | AI Development Era, AI Evolution, AI Generated Code, AI Hallucinations, Behavioral Development, Coding Practices, Cyber Security, cyber threat, Cybersecurity, Data Privacy, Digital Privacy, Episodes, Gen Z Tech, Information Security, Infosec, Model Context Protocol, Podcast, Podcasts, Privacy, security, Slopsquatting, Software Security, static code analysis, Tech Standardization, Tech Trends, technology, Vibe Coding, Weekly Edition
Join us as we explore the transformative changes in software development and cybersecurity due to AI. We discuss new terminology like ‘vibe coding’ — a novel, behavior-focused development approach, and ‘MCP’ (Model ...
Shared Security Podcast
Measuring and Increasing Code Quality

Measuring and Increasing Code Quality

| | CI-CD, code quality, Code Reviews, Cyclomatic Complexity, Dynamic Code Analysis, Maintainability, product-management, software engineering, static code analysis, technical debt
At some point in a CTO’s career questions will be raised about “code quality” under their watch. Engineering teams will typically associate code quality with bugs and feature release velocity, while Product ...
Technicalinfo.net Blog
application security, survey, F5, robotics, cybersecurity, LLMs, Lasso, LLMs, Trend, LLM, LLMs, AI, security risks, LLMs, security, LLM firewall AI

Checkmarx Adds Vulnerability Correlation Engine to AppSec Portfolio

| | Application Security, AppSec, Checkmarx Security Research Team, code scanning, static code analysis
At the RSAC 2022 conference, Checkmarx this week announced it has added a correlation engine to its application security portfolio that delivers the results of multiple static code and runtime scans in ...
Security Boulevard
SIEM

What Security Engineers Hate About SIEM

| | alerting, automated incident response, networking, SIEM, static code analysis
The security information and event management (SIEM) capabilities required to meet the demands of today’s data-intensive and threat-laden business environments are only now becoming a reality. As an industry, we have reached ...
Security Boulevard
OAuth, XSS, Google WhiteSource Log4j Deepfence threat report

WhiteSource Open Source Tool Can Discover Log4j Vulnerabilities

| | Apache Log4j Vulnerability, open source application scan, static code analysis, WhiteSource
WhiteSource has made available an open source tool to detect vulnerable instances of Log4j logging software. The recently disclosed flaw allows cybercriminals to launch a remote code execution (RCE) attack via Java ...
Security Boulevard
Microsoft bug bounty AI LockBit ransomware

Lacework Acquires Soluble to Improve Cloud Security

| | Cloud Security, Cloud-native, Lacework, misconfigurations, SCA, Secure Coding, Soluble, static code analysis
Lacework this week revealed it has acquired Soluble, a provider of a platform for remediating code that was created to provision infrastructure. At the same time, Lacework has added an inline vulnerability ...
Security Boulevard
Visualizing program structure characteristics for 12 million lines of code

Visualizing program structure characteristics for 12 million lines of code

| | code-property-graph, Data Visualization, program-structure, static code analysis, vulnerability
Static code analyzers can detect security vulnerabilities. They also provide an unusual perspective on the structure of the code they analyze. This perspective offers a glimpse inside the internals of programs that ...
ShiftLeft Blog - Medium
Refactoring a Live SaaS Environment

Refactoring a Live SaaS Environment

| | api, SaaS, Software Development, software engineering, static code analysis
We decided to refactor and re-implement almost all of our back-end and UI. This is how we went through the design and implementation. You can experience the new design by trying ShiftLeft ...
ShiftLeft Blog - Medium
ShiftLeft Tales — Reducing PoV onboarding times from few weeks to less than 5 minutes!

ShiftLeft Tales — Reducing PoV onboarding times from few weeks to less than 5 minutes!

| | product-management, shiftleft, static code analysis, user experience, vulnerability-analysis
ShiftLeft Tales — Reducing PoV onboarding times from few weeks to less than 5 minutes!ShiftLeft Product/Engineering team latest product re-design reduced our product demo & onboarding timelines from weeks to less than 5 minutes. We ...
ShiftLeft Blog - Medium
New feature — Ability to compare any two code analysis scans

New feature — Ability to compare any two code analysis scans

| | Application Security, developer, shiftleft, static code analysis, vulnerability
New feature — Ability to compare results of any two code analysis scansShiftLeft Next Generation Static Code Analysis now allows you to compare any two versions of your code scans. By using the compare scans ...
ShiftLeft Blog - Medium
Load more