Safeguard
Tag

build-security

Safeguard articles tagged "build-security" — guides, analysis, and best practices for software supply chain and application security.

31 articles

Network Security

VPN Security for Remote Development Teams: Beyond the Basics

Remote development teams depend on VPNs, but misconfigured VPNs create supply chain risks. Split tunneling, credential management, and endpoint security all affect build pipeline integrity.

Feb 5, 20235 min read
DevSecOps

Makefile Injection Attacks: When Build Automation Becomes a Weapon

Makefiles execute shell commands by design. When those commands incorporate untrusted input, the results are predictably dangerous.

Oct 30, 20224 min read
Build Security

Build Reproducibility: A Verification Guide

If you cannot reproduce a build bit-for-bit, you cannot verify it was not tampered with. This guide covers deterministic builds, reproducibility verification, and why it matters for supply chain trust.

Oct 25, 20227 min read
DevSecOps

Environment Variable Injection in CI/CD: The Invisible Attack Surface

CI/CD pipelines trust environment variables implicitly. Injecting or modifying them can hijack builds, steal secrets, and compromise deployments.

Jun 20, 20224 min read
Network Security

Software-Defined Perimeters for Supply Chain Security

Software-Defined Perimeters can isolate build systems, artifact repositories, and deployment pipelines from unauthorized access. Here is how SDP applies to supply chain security.

Jun 5, 20225 min read
DevSecOps

Temp File Race Conditions in Build Systems: The TOCTOU Problem

Build systems create and process temporary files constantly. Race conditions in temp file handling can be exploited to inject malicious content into builds.

Apr 15, 20225 min read
Industry Analysis

SolarWinds Lessons Two Years On: What Actually Changed

Two years after the SolarWinds SUNBURST compromise, the industry has new frameworks and new vocabulary — but has the build pipeline actually gotten harder to attack?

Feb 18, 20226 min read
build-security (Page 3) — Safeguard Blog