#SecureCode

Semgrep

@semgrep.com

5 days ago

AI-native assistants don't automatically understand your unique security practices during code development.

Custom Guardrails bridge that gap.👇

#AppSec #SecureCode

Semgrep

@semgrep.com

1 week ago

Want to scan your entire codebase without touching a single CI/CD file? 🛡️

In this quick walkthrough, we show you how to scale security across your repos in minutes using Semgrep Managed Scans.

No manual config, just results.👇

#AppSec #SecureCode

Tom Smith

@ctsmithiii.bsky.social

1 month ago

Anthropic Adds Automated Security Reviews to Claude Code - DevOps.com Security can’t be a last-mile checkpoint when AI is writing code at machine speed.According to DevOps.com, Anthropic has added automated security reviews directly into Claude Code, bringing vulnerabil...

New features in Claude Code let developers scan for vulnerabilities from the terminal and automate security reviews on pull requests.
devops.com/anthropic-ad... #DevOps #ApplicationSecurity #AI #ClaudeCode #GitHubActions #CodeSecurity #DeveloperTools #Anthropic #VulnerabilityManagement #SecureCode

FreeWithAI.com

@freewithai.bsky.social

1 month ago

CodeKudu AI - Automatically Fixes Bugs CodeKudu is an AI tool built specifically for Laravel applications. It performs static analysis on your code, automatically fixes bugs, and refactors it to

CodeKudu AI – Automatically Fixes Bugs

#CodeKudu #LaravelTools #AIAssistant #StaticAnalysis #CodeRefactoring #BugFixes #SecureCode #CleanCode #LaravelDevelopment #TechInnovation #FreeWithAI

freewithai.com/codekudu-ai/

Peter N. M. Hansteen (@pitrh@mastodon.social)

@pitrh.bsky.social

3 months ago

The story of Propolice, the OpenBSD stack protector www.undeadly.org/cgi?action=a... #openbsd #propolice #stackprotection #security #securecode #exploitmitigation #secureprogramming

Peter N. M. Hansteen

@pitrh.mastodon.social.ap.brid.gy

3 months ago

The story of Propolice, the OpenBSD stack protector www.undeadly.org/cgi #openbsd #propolice #stackprotection #security #securecode #exploitmitigation #secureprogramming

Bob Carver

@cybersecboardrm.bsky.social

3 months ago

OpenAI’s New Model Just Got Much Better At Writing More Secure Code www.forbes.com/sites... #cybersecurity #ChatGPT #coding #codereview #securecode

HissenIT

@hissenit.bsky.social

4 months ago

advisories/2025/SBA-ADV-20250729-01_Checkmk_Cross_Site_Scripting at public · sbaresearch/advisories Security advisories by SBA Research. Contribute to sbaresearch/advisories development by creating an account on GitHub.

(10/30/25) From github.com/sbaresearch/advisories/tree/public/2025/SBA-ADV-20250729-01_Checkmk_Cross_Site_Scripting:
"Checkmk Cross Site Scripting"

Therefore: Awareness for your Developers!

www.hissenit.com/en/academy/c...

#security #securecode #secureprogramming #iso27001

Donna E

@edwardsdna.bsky.social

5 months ago

- YouTube Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.

Channel9 What would make your life easier and your code more secure? #DeveloperSecurity #MicrosoftBuild #SecureCode

HissenIT

@hissenit.bsky.social

5 months ago

Secure Programming of Web Applications: SQL Code Injection

#securecode #security

www.hissenit.com/en/blog/secu...

John P. Mello Jr.

@jpmjr.bsky.social

5 months ago

Deadlines vs. secure code: What AppSec teams can do  | ReversingLabs AI coding and other modern development practices mean flawed code will continue to ship. Here are key recommendations for managing software risk.

The ongoing battle between shipping code fast and shipping it securely is a real challenge. Here are some strategies for AppSec teams to manage the risk. www.reversinglabs.com/blog/deadlin... #SecureCode #AppSec #SoftwareDevelopment #DevSecOps #CyberRisk

ReversingLabs

@reversinglabs.com

5 months ago

How AI coding tools can learn to develop secure software | ReversingLabs If you train ML models, they can learn to write more secure code. But the quality of the training data is only as good as your AppSec tooling.

🤖 If you train #ML models, they can learn to write more #SecureCode. But the quality of the training data is only as good as your #AppSec tooling: https://bit.ly/4n2yUXk

Alexandre Borges

@alexandreborges.bsky.social

6 months ago

Secondary Context Path Traversal in Omnissa Workspace ONE UEM:

slcyber.io/assetnote-se...

#cybersecurity #vulnerability #hacking #securecode #exploitation

HissenIT

@hissenit.bsky.social

6 months ago

“Developers lack knowledge to implement secure software development” Online Security Courses and more time for security in software development projects as one step into the right direction.

#securecode #secureprogramming

www.hissenit.com/en/blog/deve...

J.D. Lazaridis

@jdlazaridis.bsky.social

6 months ago

🚀Λοιπόν δοκίμασα το Lumo της Proton και έχω να πω ότι είναι εξαιρετικό και στην ιδιωτικότητα της συνομιλίας και στην παραγωγή ασφαλούς κώδικα! Μπράβο Proton και Lumo ίσως γίνετε το αγαπημένο μου toolbox του μήνα! @asklumo @asklumo.proton.me ‬ #LumoAI #PrivacyFirst #SecureCode

W3care

@w3care.bsky.social

7 months ago

𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐅𝐢𝐫𝐬𝐭. 𝐏𝐞𝐫𝐟𝐨𝐫𝐦𝐚𝐧𝐜𝐞 𝐀𝐥𝐰𝐚𝐲𝐬.

We write clean, secure, and SEO-optimized code with zero compromise — for website & mobile app.
💻we make sure it's:
✔️ Bug-free
✔️ Secure
✔️ SEO-ready
✔️ Built to scale

🌐 Visit: www.w3care.com

#W3care #CleanCode #SecureCode #SEOOptimized #WebDevelopment #MobileApp

OWASP® Foundation

@owasp.org

8 months ago

Join Tanya Janca on November 5 for a 1-day, hands-on training session at OWASP Global AppSec USA 2025 and learn how to design and harden APIs the right way.

Register: owasp.glueup.com/eve...

#GlobalAppSecUS #CyberSec #DevSecOps #AI #Hacking #WashingtonDC #AppSec #APISecurity #SecureCode #API

Carlos Cordero

@felisnigelus.bsky.social

9 months ago

Here's what the "AI will replace developers" crowd fundamentally misunderstands: code is not an asset—it's a liability. Every line must be maintained, debugged, secured, and eventually replaced. The real asset is the business capability that code enables. If AI makes writing code faster and cheaper, it's really making it easier to create liability. When you can generate liability at unprecedented speed, the ability to manage and minimize that liability strategically becomes exponentially more valuable. This is particularly true because AI excels at local optimization but fails at global design. It can optimize individual functions but can't determine whether a service should exist in the first place, or how it should interact with the broader system. When implementation speed increases dramatically, architectural mistakes get baked in before you realize they're mistakes. For agency work building disposable marketing sites, this doesn't matter. For systems that need to evolve over years, it's catastrophic.

Danilo gets it.
You want to hire this guy.
alonso.network/the-recurrin...
#cybersecurity #AI #SecureCode

Nebraska.Code

@nebraskacode.bsky.social

9 months ago

Lorenzo Gallegos presents 'How to Write Secure Code' July 25th at Nebraska.Code().

nebraskacode.amegala.com

#securecode #OWASP #XSS #sqlinjection #crosssitescripting #lincoln #CrossSiteRequestForgery #serversiderequestforgery #Nebraska #PrivilegeEscalation #supplychain #webdevelopment

@openrefactory.bsky.social

9 months ago

🚀 Big news: OpenRefactory iCR now supports Rust!
Just in time for #RustLang’s 10th birthday 🦀

We’re celebrating with a blog on Rust’s journey, Ferris the crab’s origin, and how iCR finds bugs others miss.

📖 Read: www.openrefactory.com/celebrating-...
📬 info@openrefactory.com

#Rust10 #SecureCode

Peter N. M. Hansteen (@pitrh@mastodon.social)

@pitrh.bsky.social

10 months ago

OpenBSD 7.7 Released www.undeadly.org/cgi?action=a... #openbsd #bsd #unixlike #newrelease #devops #development #sysadmin #networking #security #sanity #qualitysoftware #securecode #correctcode

Peter N. M. Hansteen

@pitrh.mastodon.social.ap.brid.gy

10 months ago

OpenBSD 7.7 Released www.undeadly.org/cgi #openbsd #bsd #unixlike #newrelease #devops #development #sysadmin #networking #security #sanity #qualitysoftware #securecode #correctcode

Peter N. M. Hansteen (@pitrh@mastodon.social)

@pitrh.bsky.social

11 months ago

You Have Installed OpenBSD. Now For The Daily Tasks. nxdomain.no/~peter/openb... refreshed in anticipation of the #openbsd 7.7 release #newrelease #development #freesoftware #libresoftware #security #securecode

Peter N. M. Hansteen

@pitrh.mastodon.social.ap.brid.gy

11 months ago

You Have Installed OpenBSD. Now For The Daily Tasks. nxdomain.no/~peter/openbsd_installed... refreshed in anticipation of the #openbsd 7.7 release #newrelease #development #freesoftware #libresoftware #security #securecode

AntStack

@antstack.com

1 year ago

AntStack TV | Episode 6 | Essential Serverless Security Best Practices for Developers! In this engaging episode of AntStack TV, Akshatha Laxmi and Divya Poonthottam, Members of the Technical Staff at AntStack, share their expertise on building scalable, secure, and efficient serverless applications. 📅 Topics Covered: 🔵 Setting up robust infrastructure for serverless environments. 🔵 Ensuring code quality and vulnerability detection with SonarCloud. 🔵 Security essentials: Input validation, sanitization, and IAM best practices. 🔵 Common attacks like SQL injection, DoS, and how to prevent them. 🔵 Leveraging AWS services like Cognito for authentication and Just-in-Time privileges for resource access. 🔵 Testing automation in CI/CD pipelines and avoiding dependency pitfalls. Hear from AntStack's experts as they break down the strategies and tools that ensure security, scalability, and efficiency in serverless architectures. Don’t forget to like, share, and subscribe for more tech-focused episodes on AntStack TV! Contact us for starting your serverless journey: https://www.antstack.com/build-with-us/?utm_source=youtube&utm_medium=description&utm_campaign=ytConverstion #ServerlessArchitecture #CodeQuality #Cybersecurity #SonarCloud #AWSBestPractices #Snyk #DevSecOps #ServerlessDevelopment #AntStackTV #TechTips Website: https://www.antstack.com/ LinkedIn: https://linkedin.com/company/antstackio Behance: https://behance.net/antstack Twitter/X: https://twitter.com/antstack Instagram: https://instagram.com/lifeatantstack [Serverless Development, Infrastructure as Code, Security Best Practices, Input Validation, Vulnerability Detection, CI/CD Pipelines, AWS Cognito, Just-in-Time Privileges, Automated Testing, Cloud Security, Developer Tools]

Can a package update do more harm than good?

Akshatha Laxmi breaks down how unchecked updates, especially major ones, can introduce vulnerabilities, and how tools like Snyk keep your system safe.

🎥 Watch: bit.ly/426ZjLU

#CyberSecurity #DevOps #SecureCode #AntStack

Semgrep

@semgrep.com

1 year ago

Everything About Secure Code Reviews: Mastering SAST Techniques for Robust Software Abstract

Exciting news! 🎉 Semgrep is featured in Sandeep Saxena’s blog on mastering SAST techniques for secure software.
Check out the full post to enhance your SAST strategy!

infosecwriteups.com/everything-a...

#Semgrep #SAST #SecureCode #DevSecOps #CyberSecurity #StaticAnalysis #VulnerabilityDetection

CyberTaters

@potato.software

1 year ago

Retrofitting spatial safety to hundreds of millions of lines of C++:

security.googleblog.com/2024/11/retr...

#securecode #infosec #informationsecurity #cpp #programming #potatosecurity

Alexandre Borges

@alexandreborges.bsky.social

1 year ago

Retrofitting spatial safety to hundreds of millions of lines of C++ Posted by Alex Rebert and Max Shavrick, Security Foundations, and Kinuko Yasuda, Core Developer Attackers regularly exploit spatial mem...

Retrofitting spatial safety to hundreds of millions of lines of C++:

security.googleblog.com/2024/11/retr...

#securecode #infosec #informationsecurity #cpp #programming #cybersecurity

Alexandre Borges

@alexandreborges.bsky.social

2 years ago

Full Chain Baseband Exploits, Part 1 Full Chain Baseband Exploitation, Part 1

Full Chain Baseband Exploits:

Part 1: labs.taszk.io/articles/pos...
Part 2: labs.taszk.io/articles/pos...
Part 3: labs.taszk.io/articles/pos...

#exploit #exploitation #cve #security #informationsecurity #infosec #securecode #mobile