Infrastructure Security
Nexus Repository Security Hardening: Beyond the Defaults
Sonatype Nexus is everywhere. Its default configuration is permissive. Here is how to lock it down for enterprise use.
Jan 12, 20236 min read
Deep dives, practical guides, and incident analyses from engineers who build Safeguard. No fluff, no vendor FUD — just what you need to ship secure software.
Sonatype Nexus is everywhere. Its default configuration is permissive. Here is how to lock it down for enterprise use.
A comprehensive checklist for hardening your container images, from base image selection to runtime protections, with practical Dockerfile examples.
OpenSSL's transformation from a two-person project securing half the internet to a properly governed foundation offers a blueprint for open source security governance.
CircleCI told every customer to rotate every secret on January 4, 2023. Here is what actually happened and why the scope was total.
PHPStan brings static analysis to PHP. Its type checking catches entire classes of bugs that lead to security vulnerabilities in PHP applications.
Symbolic links in package archives can redirect file operations to unintended locations. Here is how this old trick still works against modern tools.
Depending on too few vendors creates systemic risk. The CrowdStrike outage proved it. Here is how to assess and manage vendor concentration in your software stack.
Securing Vue.js applications from template injection, XSS through v-html, and third-party plugin risks.
CircleCI's January 2023 breach exposed secrets for thousands of organizations. Here's how the attack unfolded and what it means for CI/CD security.
Weekly insights on software supply chain security, delivered to your inbox.