Tag
code-review-security
Safeguard articles tagged "code-review-security" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Vulnerability Analysis
Trojan Source Unicode bidi-override attack (CVE-2021-42574)
CVE-2021-42574 (Trojan Source) lets Unicode bidi control characters hide malicious logic in plain sight during code review. Here's the full breakdown and fix.
Jan 13, 20267 min read
AppSec
An OWASP-Aligned Secure Code Review Checklist
OWASP's secure code review guidance gives structure to what could otherwise be an unfocused read-through — here's a practical checklist built around it.
Mar 24, 20255 min read