Safeguard
Tag

application-security

Safeguard articles tagged "application-security" — guides, analysis, and best practices for software supply chain and application security.

613 articles

Application Security

Cheat sheet: 10 Bitbucket security best practices

A concrete, numbers-first cheat sheet covering the 10 Bitbucket security settings that stop misconfigurations from becoming supply chain breaches.

May 23, 20266 min read
Application Security

Fixing vulnerabilities in Maven projects

Maven vulnerability remediation isn't just running mvn versions:use-latest — here's how to triage, patch, and verify fixes without breaking builds.

May 22, 20266 min read
Application Security

Fixing vulnerabilities in Gradle projects

Gradle's resolved dependency graph rarely matches build.gradle. Here's how to find, force-fix, and lock vulnerable transitive dependencies for good.

May 22, 20266 min read
Application Security

The ultimate guide to creating a secure Python package

A concrete, numbers-first guide to locking dependencies, signing releases, and scanning for CVEs when building a secure Python package.

May 22, 20266 min read
Application Security

Command injection in Python: examples and prevention

Python command injection lets attackers run arbitrary OS commands via os.system() or subprocess. Learn how it works, a real CVE, and how to prevent it.

May 22, 20266 min read
Application Security

Code injection in Python: examples and prevention

How Python code injection (CWE-94) works, real CVEs like PyYAML's CVE-2020-14343, and concrete steps to detect and fix it before attackers do.

May 21, 20267 min read
Application Security

10 dimensions of Python static analysis

Python static analysis spans ten distinct techniques, from AST linting to reachability analysis — most teams run only two or three, missing real exploitable risk.

May 21, 20268 min read
Application Security

Symmetric vs asymmetric encryption: practical Python examples

Symmetric vs asymmetric encryption explained with working Python code: AES-256-GCM, RSA-OAEP, hybrid encryption, and the mistakes that cause real breaches.

May 21, 20267 min read
Application Security

Using Python libraries for secure network communication

A look at requests, urllib3, cryptography, and paramiko: real CVEs (Terrapin, header leaks), insecure defaults, and how to pin them safely.

May 21, 20266 min read
Application Security

Rust memory safety and its security advantages

Memory safety bugs cause ~70% of Microsoft's CVEs. Here's how Rust's ownership model eliminates them at compile time, with real CVE examples.

May 20, 20267 min read
Application Security

Type-safe languages and their security benefits

Type safety eliminates entire CVE classes, not one bug at a time. Here's what the Microsoft, Google, and CISA data actually shows about the security payoff.

May 20, 20267 min read
Application Security

.NET and NuGet dependency vulnerability management

NuGet packages have delivered RATs, crypto stealers, and undisclosed data collection to .NET teams. Here's how to detect and defend against .NET/NuGet supply chain risk.

May 20, 20267 min read
application-security (Page 23) — Safeguard Blog