Safeguard
Tag

serverless-security

Safeguard articles tagged "serverless-security" — guides, analysis, and best practices for software supply chain and application security.

9 articles

Cloud Security

Serverless Security Best Practices: Securing the Function Lifecycle

A lifecycle approach to serverless security across AWS Lambda, Azure Functions, and Cloud Functions — covering the build, deploy, invoke, and runtime phases with IAM, dependency, and event-injection controls.

Jul 2, 20265 min read
Container Security

Securing serverless containers on Fargate and Cloud Run

No SSH, no DaemonSets, no host agents. Here's how Firecracker and gVisor isolation change container security on Fargate and Cloud Run — and what still gets you breached.

Jun 21, 20267 min read
Application Security

Securing AWS Lambda functions

A practical guide to AWS Lambda security best practices: IAM scoping, dependency risk, secrets handling, and runtime detection for serverless apps.

Jun 16, 20267 min read
Application Security

Serverless security implications from infra to OWASP

Serverless shrinks the OS attack surface but expands the IAM and dependency one. Here's how the OWASP Serverless Top 10 maps to real 2021-era incidents.

Apr 27, 20266 min read
Application Security

10 serverless security best practices

10 concrete, numbers-backed serverless security practices covering IAM least privilege, dependency SBOMs, event injection, and secrets management.

Apr 27, 20266 min read
Application Security

Securing AWS Lambda cold starts and execution permissions

Lambda cold starts inject live IAM credentials into shared execution environments — here's how over-permissioned roles and vulnerable layers turn that into a real attack surface.

Apr 26, 20267 min read
Cloud Security

What is Serverless Security

Serverless security protects function code, IAM roles, and event triggers where traditional host-based scanning and patching don't apply.

Mar 17, 20266 min read
Industry Analysis

Security considerations for running WebAssembly at the ed...

Wasm's sandbox is safe by default, not safe by construction. Here's where edge WebAssembly security breaks down -- in browsers, at the edge, and in the build pipeline.

Dec 10, 20257 min read
Cloud Security

AWS Lambda Supply Chain Risks You Are Probably Ignoring

Serverless does not mean secure. Here are the supply chain risks hiding in your Lambda functions and how to address them.

Apr 15, 20247 min read
serverless-security — Safeguard Blog