Safeguard
Tag

software-supply-chain-security

Safeguard articles tagged "software-supply-chain-security" — guides, analysis, and best practices for software supply chain and application security.

494 articles

Application Security

SAST vs SCA Testing

SAST scans the code you wrote; SCA scans the code you imported. Here's the real difference, with Equifax, Log4Shell, and xz as case studies.

Apr 14, 20267 min read
SBOM

CycloneDX vs SPDX: SBOM Format Comparison 2026

A practical CycloneDX vs SPDX comparison for 2026 buyers: schema depth, tool support, regulatory alignment, and which format to pick for which use case.

Apr 14, 20265 min read
Software Supply Chain Security

SCA vs SBOM: What's the Difference

SCA and SBOM aren't the same thing: one is a scanning process, the other is a compliance artifact. Here's how they differ and why you need both.

Apr 14, 20267 min read
Cloud Security

Dependency Confusion Attack

How dependency confusion attacks exploit registry name collisions to run attacker code inside corporate networks, from Alex Birsan's 2021 research to the 2022 PyTorch breach.

Apr 13, 20266 min read
Cloud Security

CNAPP vs CASB: what's the difference?

CNAPP and CASB are often confused, but they secure different things. Here's how they compare, how Prisma Cloud fits, and where supply chain security comes in.

Apr 12, 20268 min read
AI Security

Supply Chain Risks of AI Coding Assistants

Copilot, Cursor, and Claude Code change what enters your codebase and how. A practitioner's map of the real supply chain risks — hallucinated packages, rules-file injection, and unreviewed transitive trust.

Apr 11, 20266 min read
Application Security

State of ASPM 2026: key trends and emerging threats

ASPM went mandatory in 2026. Here's how supply chain attacks, AI-generated code, and Prisma Cloud's cloud-first architecture are reshaping what buyers actually need.

Apr 11, 20268 min read
Application Security

What is an Attack Surface

An attack surface is every exposed point attackers can use to get in — code, configs, credentials, and dependencies. Here's how to define, measure, and shrink it.

Apr 9, 20267 min read
Vulnerability Analysis

What is a Zero-Day Vulnerability

A zero-day vulnerability is exploited before a patch exists. See real cases like Log4Shell and MOVEit, and how to cut response time.

Apr 9, 20267 min read
Vulnerability Analysis

What is a CVE (Common Vulnerabilities and Exposures)

A CVE is a unique ID for a known security flaw, but how it's assigned, scored, and disclosed is far messier than the name suggests.

Apr 9, 20267 min read
Product

Securing the cloud with Cortex XSOAR and Prisma Cloud (SO...

Cortex XSOAR and Prisma Cloud automate cloud incident response, but SOAR reacts to runtime alerts. Here's why supply chain provenance still needs a separate layer.

Apr 7, 20267 min read
Cloud Security

5 best practices for using Prisma Cloud with Oracle Cloud...

Five OCI cloud security best practices for running Prisma Cloud on Oracle Cloud Infrastructure, from IAM scoping to closing the software supply chain gap.

Apr 7, 20267 min read
software-supply-chain-security (Page 17) — Safeguard Blog