- Opengrep – A Fork of Semgrep
by niros_valtos on 1/23/25, 3:25 PM, with comments
- Show HN: Semgrep rule to identify malicious Python code
by niros_valtos on 3/7/24, 12:58 PM, with comments
- Show HN: Semgrep Rule That Identifies GitHub Repo Confusion Attack IOCs
by niros_valtos on 3/7/24, 1:35 AM, with comments
- Cellular Outage Caused by Cyber Attack? Speculations on Social Media
by niros_valtos on 2/22/24, 2:23 PM, with comments
- The Guide to Building an Efficient CI/CD Pipeline
by niros_valtos on 9/18/23, 1:50 PM, with comments
- GitHub sends my hardcoded secrets to providers when Secret Scanning is disabled
by niros_valtos on 5/11/23, 3:10 AM, with comments
- Trying to identify spoofing in GitHub? May the 4th (or 5th) be with you
by niros_valtos on 5/5/23, 2:12 PM, with comments
- What Is Pippelineless Security?
by niros_valtos on 2/21/23, 2:45 PM, with comments
- Show HN: GitGoat v2 is released – fake commits with real vulnerable code
by niros_valtos on 2/5/23, 5:02 PM, with comments
- GitHub finally introduced fine-grained personal access tokens
by niros_valtos on 10/18/22, 4:17 PM, with comments
- Hardening software development environments 101
by niros_valtos on 9/22/22, 11:50 AM, with comments
- NSA's software supply chain security recommendations need some refinement
by niros_valtos on 9/13/22, 2:12 PM, with comments
- Ask HN: How do you prioritize the update of vulnerable 3rd party packages?
by niros_valtos on 9/6/22, 6:37 AM, with comments
- Hold the pitchforks. What LastPass did right.
by niros_valtos on 8/26/22, 5:40 PM, with comments
- GitHub Enterprise Cloud customers can access IP addresses for audit log entries
by niros_valtos on 8/6/22, 2:12 AM, with comments
- Making to most of GitHub rate limits
by niros_valtos on 7/27/22, 10:54 AM, with comments
- What is eBPF, anyway, and why should Kubernetes admins care?
by niros_valtos on 7/26/22, 10:02 AM, with comments
- FBI found Huawei equipment in Midwest could disrupt US nuclear communications
by niros_valtos on 7/26/22, 9:52 AM, with comments
- What every developer should know about GitHub CODEOWNERS
by niros_valtos on 7/25/22, 3:17 PM, with comments
- How to Protect Stale Source Code Repositories on GitHub
by niros_valtos on 7/19/22, 12:12 PM, with comments
- Why we offer our advanced secret scanning for free, even for private repos
by niros_valtos on 7/9/22, 1:46 PM, with comments
- Supply Chain Breach: Tracing the Impact of a Clothing Retailer on Your Prod Env
by niros_valtos on 5/25/22, 7:16 PM, with comments
- Show HN: Free secrets scanning for unlimited private GitHub repos
by niros_valtos on 5/12/22, 3:36 PM, with comments
- How to Protect Yourself Against GitHub/OAuth Apps Supply Chain Attacks
by niros_valtos on 4/17/22, 11:54 AM, with comments
- Stay tuned for Kaspersky source code leak
by niros_valtos on 3/9/22, 5:19 AM, with comments
- How to survive a state-actor trying to put a backdoor in your code?
by niros_valtos on 3/8/22, 12:41 PM, with comments
- App SEC vs. Software Supply Chain Security Explained
by niros_valtos on 2/28/22, 2:52 PM, with comments