Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Snyk

A (soft) introduction to Python dependency management

Sep 14, 2021 By Lucian Irsigler In Snyk

Python has been deemed as a “simple” language — easy to use and easy to develop scripts to do numerous tasks — from web scraping to automation to building large-scale web applications and even performing data science. However, dependencies are managed quite differently in Python than in other languages, and the myriad options of setting up an environment and package managers only add to the confusion.

Read Post
Snyk

Detect and prevent dependency confusion attacks on npm to maintain supply chain security

Sep 13, 2021 By Liran Tal In Snyk

On February 9, 2021, Alex Birsan disclosed his aptly named security research, dependency confusion. In his disclosure, he describes how a novel supply chain attack that exploits misconfiguration by developers, as well as design flaws of numerous package managers in the open source language-based software ecosystems, allowed him to gain access and exfiltrate data from companies such as Yelp, Tesla, Apple, Microsoft, and others.

Read Post

DevSecOps Road Trip UK stop - Andrew Martin & Lili Kastilio

Sep 13, 2021 By Snyk In Snyk
Session 1: Threat Modelling Kubernetes Cloud native container and Kubernetes systems bring new threats and risks to our precious workloads. As cloud technologies undergo rapid innovation and new tools and techniques emerge, security can get left behind. The answer to this conveyor-belt of potential insecurity? Threat modelling!
View Video
Featured Post
snyk

Dev-first SAST: Increase your developer productivity while staying secure

Sep 9, 2021 By Liran Tal, Director of Developer Advocacy In Snyk
Static application security testing (or SAST) used to be a term coined by the security team, to help developers test their code early in the software development life cycle (SDLC). Unlike dynamic testing, it does not require a working application, which allows developers to identify security vulnerabilities while they code, so they can spot them as soon as they appear and fix them when it's easiest and fastest to do so. This cuts down their future workload by decreasing the backlog of issues they'll have to address later.
Read Post
Snyk

The inevitability of Developer Security

Sep 9, 2021 By Guy Podjarny In Snyk

It’s exciting to share the news of our new funding round. It let us bring onboard some amazing investors and funds for further growth, along with setting the company valuation at $8.5B — a pretty big number. When you look at this valuation, and consider these smart investors expect it to grow substantially, you may wonder — how can this market be big enough to support these numbers? I would say the real question is — how can it not be?

Read Post

Announcing Snyk's Series F: Leading the World to Developer Security

Sep 9, 2021 By Snyk In Snyk
We’re proud to announce our Series F funding at a $8.5B valuation, co-led by Capital Ventures and Tiger Global! We believe in helping the world’s developers build secure applications and equipping security teams to meet the demands of the digital world. Thank you to our investors and community for supporting our vision. We're excited to continue our journey of advancing and leading developer security.
View Video
Snyk

Snyk Code support for PHP vulnerability scanning enters beta

Sep 2, 2021 By DeveloperSteve In Snyk

Snyk Code support for PHP vulnerability scanning is now available in beta. Now security issues in PHP code can be identified quickly and easily. To get started, log into Snyk or sign up for a free account. Once logged in on the dashboard, click on the Add Project button in the top right corner and connect to a repository you want to scan.

Read Post
Snyk

7 steps to improve developer security

Sep 2, 2021 By Sam Hepburn In Snyk

Empathy — that ability to understand what others are feeling — might be the secret ingredient when it comes to successfully shifting security into the developer world. Snyk co-founder and president Guy Podjarny hosts The Secure Developer podcast, and in interview after interview, guests have repeatedly spoken about how empathy, understanding, and a bias toward action are the biggest components of a successful developer-first security culture.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.