Safeguard
Tag

microservices

Safeguard articles tagged "microservices" — guides, analysis, and best practices for software supply chain and application security.

10 articles

DevSecOps

Reachability Analysis For Monorepos And Microservices

Reachability across a monorepo or a microservices fleet needs different engineering than reachability inside a single service. Both are tractable; both have specific failure modes.

Mar 20, 20263 min read
Best Practices

Secrets Rotation Across Microservices: A Playbook

A practical senior engineer's playbook for rotating secrets across microservices without downtime, drift, or the quiet credential leaks that come from half-done cutovers.

Nov 22, 20247 min read
Best Practices

Monolith to Microservices: Supply Chain Changes

What really happens to your software supply chain when you decompose a monolith into services, and how to avoid trading one risk for forty new ones.

Jul 28, 20247 min read
SBOM

SBOMs for Microservices Architecture: Managing Complexity at Scale

When your application is 50 services with 50 dependency trees, SBOM management stops being simple. Here's how to handle it.

Feb 20, 20246 min read
Application Security

Security Considerations When Migrating from Monolith to Microservices

Decomposing a monolith into microservices changes the attack surface fundamentally. The security model that worked for the monolith will not work for the distributed system.

Nov 18, 20237 min read
API Security

gRPC Security Considerations: Protecting High-Performance Service Communication

gRPC's binary protocol and HTTP/2 transport make it fast. They also make it harder to inspect, monitor, and secure than REST APIs. Here is what you need to know.

Sep 12, 20235 min read
Case Studies

Spotify's Dependency Management at Scale

Inside Spotify's approach to managing thousands of dependencies across hundreds of microservices, balancing developer autonomy with supply chain security.

Jun 10, 20237 min read
Architecture

Microservices Security Architecture: A Supply Chain Perspective

Microservices multiply your dependency surface. This guide covers service mesh security, inter-service authentication, and dependency management across distributed architectures.

Jul 25, 20227 min read
Architecture Security

Event-Driven Architecture Security: Risks You Cannot Ignore

Event-driven systems decouple producers from consumers, but that decoupling creates security blind spots. Here is how to secure the invisible connections.

Feb 18, 20226 min read
Application Security

gRPC Security Considerations for Microservice Architectures

gRPC powers high-performance microservice communication, but its binary protocol and code generation model introduce unique security challenges most teams overlook.

Dec 5, 20216 min read
microservices — Safeguard Blog