microservices
Safeguard articles tagged "microservices" — guides, analysis, and best practices for software supply chain and application security.
10 articles
Reachability Analysis For Monorepos And Microservices
Reachability across a monorepo or a microservices fleet needs different engineering than reachability inside a single service. Both are tractable; both have specific failure modes.
Secrets Rotation Across Microservices: A Playbook
A practical senior engineer's playbook for rotating secrets across microservices without downtime, drift, or the quiet credential leaks that come from half-done cutovers.
Monolith to Microservices: Supply Chain Changes
What really happens to your software supply chain when you decompose a monolith into services, and how to avoid trading one risk for forty new ones.
SBOMs for Microservices Architecture: Managing Complexity at Scale
When your application is 50 services with 50 dependency trees, SBOM management stops being simple. Here's how to handle it.
Security Considerations When Migrating from Monolith to Microservices
Decomposing a monolith into microservices changes the attack surface fundamentally. The security model that worked for the monolith will not work for the distributed system.
gRPC Security Considerations: Protecting High-Performance Service Communication
gRPC's binary protocol and HTTP/2 transport make it fast. They also make it harder to inspect, monitor, and secure than REST APIs. Here is what you need to know.
Spotify's Dependency Management at Scale
Inside Spotify's approach to managing thousands of dependencies across hundreds of microservices, balancing developer autonomy with supply chain security.
Microservices Security Architecture: A Supply Chain Perspective
Microservices multiply your dependency surface. This guide covers service mesh security, inter-service authentication, and dependency management across distributed architectures.
Event-Driven Architecture Security: Risks You Cannot Ignore
Event-driven systems decouple producers from consumers, but that decoupling creates security blind spots. Here is how to secure the invisible connections.
gRPC Security Considerations for Microservice Architectures
gRPC powers high-performance microservice communication, but its binary protocol and code generation model introduce unique security challenges most teams overlook.