When it comes to hosting your apps on Heroku, it’s important to consider security. As a Platform-as-a-service (PaaS) provider, Heroku handles many things for you, but it’s important to understand…
Update: Go to this link to watch the webinar After releasing the first Runtime Application Self-Protection (RASP) for Go a few months ago, we’re excited to host a Go application security webinar. …
It’s not a secret that the world of software development is going through some massive changes: the increasing speed of releases, the advent of microservices and distributed infrastructures, and more.…
Scrapers or bad bot protection is a big topic for a lot of company departments. However, it’s always developers or DevOps that end up implementing a bad bot mitigation solution.…
So you’ve finally decided to buy some Bitcoin, Ethereum or any other coin that’s all the rage these days? At Sqreen, we’re not so much interested in the cryptocurrency craze,…
Last week a vulnerability affecting Net::FTP, part of Ruby standard library, was uncovered by Etienne Stalmans (Great job 🙌) from the Heroku product security team. This article will explain the vulnerability and…
I sat down with Ricardo Félix, the lead DevOps Engineer at Uniplaces to talk about DevOps best practices for startups. Uniplaces is the leading online marketplace for booking student accommodation…
Application security is about adding extra layers of protection. One easy win is to add a Content Security Policy (CSP) to your web application’s headers. What is a CSP?…
You use Heroku because you want to get your apps into the cloud without having to worry about the hassles of infrastructure. Unfortunately, you haven’t been worrying too much about…
If you’re a developer, a CTO or a DevOps, how can you identify attackers in your user base before they exploit a vulnerability in your application? As soon as you…