Tag
sdlc-security
Safeguard articles tagged "sdlc-security" — guides, analysis, and best practices for software supply chain and application security.
3 articles
DevSecOps
DevSecOps best practices for secure builds: an 8-point SDLC framework
Log4Shell (Dec 2021) and the XZ Utils backdoor (Mar 2024) exposed two different SDLC failure modes. An 8-point framework closes both.
Jul 13, 20266 min read
AI Security
New security risks across the agentic development lifecycle
Snyk found 76 confirmed-malicious skills among 3,984 analyzed and roughly a third of public MCP servers carrying exploitable flaws — legacy AppSec never modeled an agent as the author.
Jul 7, 20267 min read
Container Security
Container security throughout the SDLC
A clean build-time scan doesn't mean a secure container. Here's why container security has to span code, build, deploy, and runtime — with real CVE examples.
Jun 23, 20267 min read