glossary
Safeguard articles tagged "glossary" — guides, analysis, and best practices for software supply chain and application security.
5 articles
Top 10 Application Security Acronyms (Glossary)
SAST, DAST, SBOM, CVSS, CWE, SSDF — 10 AppSec acronyms defined with real CVEs, dates, and standards so you use them correctly, not interchangeably.
What is DevSecOps
DevSecOps embeds security into every pipeline stage instead of a final review — here's what it means, how it works, and why Equifax and Log4Shell made it mandatory.
What is a CNAPP (Cloud Native Application Protection Platform)
CNAPP unifies CSPM, CWPP, and CIEM into one platform. Here's what it actually does, how it emerged, and where today's tools fall short.
What is a CI/CD Pipeline
A CI/CD pipeline automates code from commit to deployment—but SolarWinds, Codecov, and CircleCI show it's also a top supply-chain attack target.
Glossary of Model Context Protocol security terminology
A precise MCP security glossary covering clients, servers, resources vs. tools, tool poisoning, rug pulls, and the confused deputy problem — with real-world examples.