Security Scanning
Safeguard articles tagged "Security Scanning" — guides, analysis, and best practices for software supply chain and application security.
6 articles
How to Run Your First Security Scan
New to security? This beginner walkthrough shows you how to run your first vulnerability scan on a real project, read the results, and know exactly what to do next.
Reducing false positives in security scanning
Most security scan findings never warrant action. Here's why scanners over-alert, what it costs teams, how Aikido's consolidation approach compares, and what actually cuts false positives.
Self-Hosted vs SaaS Security Scanning: An Honest Comparison
Run scanners on your own metal or rent the vendor's? A cost, latency, and data-residency comparison from someone who has operated both and regretted each at least once.
SonarQube Security Scanning: Code Quality Meets Application Security
A review of SonarQube's security scanning capabilities, examining how its code quality heritage shapes its approach to vulnerability detection and taint analysis.
GitLab CI Security Scanning Setup
Step-by-step guide to enabling SAST, DAST, dependency scanning, and container scanning in GitLab CI pipelines.
GoSec Static Analysis for Go: Practical Security Scanning
GoSec finds security issues in Go source code. Here is how to get the most out of it without fighting false positives all day.