Tag
tutorial
Safeguard articles tagged "tutorial" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Tutorials
How to Check if an npm Package Is Safe
Before you run npm install, learn a quick, repeatable routine to judge whether an npm package is trustworthy — using metadata, known vulnerabilities, and a scan.
Jul 1, 20265 min read
Tutorials
How to Read a CVE: A Beginner's Guide
A plain-language walkthrough of what a CVE record contains and how to read one — the ID, description, CVSS score, CWE, affected versions, and whether a fix exists.
Jul 1, 20265 min read
SBOM
How to Read a CycloneDX SBOM: A Line-by-Line Walkthrough
A walkthrough of a CycloneDX 1.6 JSON document — metadata, components, services, dependencies, and vulnerabilities — with a real snippet and what to check first.
Apr 13, 20267 min read