The startup’s guide to securing your infrastructure
Eric
Running tech at a startup is a hard job. You’re on a shoestring budget, if you even have one. You’re constantly understaffed. Everyone needs that new feature or server set…
Serverless JWT authentication with Netlify and Zeit
Thibaud
Lambdas are a great addition to the tech ecosystem by Amazon. They can help bootstrap projects and fulfill a wide range of specific use cases. Given their usefulness, at some…
Top 10 Python security best practices
Don Roche
On the sleepy island of Gozo, security isn’t a concern. Tourists can leave their bags on the beach and go off on an adventure without worrying that their belongings will…
How to manage security debt as a startup
What do you know about security debt? As the leader of a software startup, you’re probably familiar with the concept of technical debt. Technical debt is where your team makes…
Top 6 security best practices for Go
Christian Meléndez
Golang’s adoption has been increasing over the years. Successful projects like Docker, Kubernetes, and Terraform have bet heavily on this programming language. More recently, Go has been the de facto…
APIDays 2019: RASP for APIs and microservices
Jb
This week, I had the opportunity to speak at APIDays in Paris. As is often the case, APIDays was frequented by a super interesting mix of technologists, looking for the…
How to transition into DevSecOps
Sylvia Fronczak
Many of us have been living the DevOps life for a while now. We no longer just write the applications and leave the rest of the lifecycle to others. We’re…
Security interview: Adam Baldwin on iterating security at npm
Josh
Recently, we sat down with Adam Baldwin, VP of Security at npm, to discuss his approach to security and what he’s learned as far as security goes throughout his career.…
SOC 2 compliance guide for startups
Carlos Schults
Security has always been a big concern for business organizations. Nowadays, it’s an even more significant concern, and it isn’t hard to understand why. The technology world changes at an…
What is a Content Security Policy (CSP) and why is it important?
Trust is the fundamental currency of the internet. You trust your service provider that they’ll continue to maintain your internet access. Your developers trust your architecture provider when they say…