infrastructure
Safeguard articles tagged "infrastructure" — guides, analysis, and best practices for software supply chain and application security.
10 articles
Juniper Junos CVE-2024-21591: Routing Plane Vulnerabilities and 2026 Defense
CVE-2024-21591 was an out-of-bounds write in Juniper Junos OS that affected core routing infrastructure. The technical details and what defenders should take away in 2026.
Build Server Compromise Investigation
A hands-on investigation guide for compromised build servers, from initial containment through rootkit checks and clean rebuild.
Multi-Cloud Security Posture Management for Supply Chains
Running workloads across AWS, Azure, and GCP multiplies your attack surface. This guide covers cloud security posture management with a supply chain lens.
Cloudflare's Supply Chain Security Model
How Cloudflare secures the software supply chain for infrastructure that sits between the internet and millions of websites, with lessons on Rust adoption and edge computing security.
SBOM Storage and Distribution Infrastructure
Generating SBOMs is solved. Storing, versioning, and distributing them at scale is the next engineering challenge.
Rate Limiting in Package Registries: Balancing Security and Developer Experience
Docker Hub's rate limits broke builds worldwide. Rate limiting is necessary for registry security, but getting it wrong disrupts entire engineering organizations.
Network Segmentation for Development Environments: Isolating the Build Pipeline
Development environments are often the weakest link in network security. Proper segmentation isolates build systems from production and prevents lateral movement from compromised developer machines.
Harbor Registry Security Configuration: A Complete Hardening Guide
Harbor is the most popular open-source container registry. Its security features are powerful but require deliberate configuration to be effective.
CDN Supply Chain Security Risks You Should Know
Content delivery networks serve billions of software assets daily. When a CDN is compromised, the blast radius is enormous. Here's what CDN supply chain risks look like and how to defend against them.
DNS Hijacking and Its Supply Chain Implications
DNS hijacking can redirect software updates, package downloads, and API calls to attacker-controlled servers. Here's how this underrated attack vector threatens your entire software supply chain.