Dev Practices
In-depth guides and analysis on dev practices from the Safeguard engineering team.
6 articles
Git Branching Strategies With Security Gates
Trunk-based, GitHub Flow, or GitFlow — your branching model decides where security checks can actually block bad code. Here is how to wire gates into each.
Dependency Injection in JavaScript: Security Notes
Dependency injection in JavaScript makes code testable and modular, but the same indirection that helps design can hide security bugs if you're not careful about what gets injected.
Applying Git Patches Safely
Knowing how to apply a patch in git without breaking your working tree takes more than running git apply once and hoping for the best.
Node.js Backend Security Checklist
A working checklist for securing a Node.js backend: dependency hygiene, input validation, secrets, HTTP headers, and the CI gates that keep regressions out.
What Is Dependency Injection? (And What It Means for Security)
Dependency injection is a design pattern where objects receive their dependencies from outside rather than creating them. It makes code testable and flexible — and it has real security implications.
What Are Dependencies in Software?
A plain-English definition of software dependencies, how direct and transitive dependencies differ, and why most projects ship far more third-party code than code their own team wrote.