Skip to content

AppSec Observer

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    A BIGGER SHARE OF VULNERABILITIES WERE SERIOUS IN THE FIRST TWO MONTHS OF THE YEAR

    A BIGGER SHARE OF VULNERABILITIES WERE SERIOUS IN THE FIRST TWO MONTHS OF THE YEAR

    Until recently, the word “Hafnium” most commonly referred to an obscure atomic element—atomic number 72 in the Periodic..

    Issues with Golang (Google Go) Security

    Issues with Golang (Google Go) Security

    All Systems Go—Except Golang Application Security Google Go (also known as Golang) continues its role as a popular..

    A Single Security Platform That Actualizes DevSecOps

    A Single Security Platform That Actualizes DevSecOps

    Security and Development Are Out of Synch When bringing new applications to market, speed has become a top priority...

    CONTRAST STUDY FINDS THAT LESS THAN 10% OF APPLICATION CODE IS ACTIVE THIRD-PARTY LIBRARY CODE

    CONTRAST STUDY FINDS THAT LESS THAN 10% OF APPLICATION CODE IS ACTIVE THIRD-PARTY LIBRARY CODE

    2021 State of Open-source Security Report Examines Real-world Software Supply Chains Prompted by the devastating..

    Automation Paves the Way for Interactive Application Penetration Testing

    Automation Paves the Way for Interactive Application Penetration Testing

    Adoption of DevOps is increasing the rate of software deployment. A recent survey by DevOps Research and Assessment..

    CONTRAST LABS REVEALS DEPENDENCY CONFUSION VULNERABILITY IN MICROSOFT TEAMS

    CONTRAST LABS REVEALS DEPENDENCY CONFUSION VULNERABILITY IN MICROSOFT TEAMS

    When the COVID-19 pandemic forced a large percentage of the world’s office workers to begin working remotely a year..

    DEPENDENCY CONFUSION: A NEW THIRD-PARTY RISK FOR THE SOFTWARE FACTORY

    DEPENDENCY CONFUSION: A NEW THIRD-PARTY RISK FOR THE SOFTWARE FACTORY

    The SolarWinds attack has been extensively covered over the past two months—and rightly so. This dependency confusion..

    AS 2020 CLOSED OUT, MORE APPLICATIONS HAD SERIOUS VULNERABILITIES AND ATTACK LIKELIHOOD REMAINED ELEVATED

    AS 2020 CLOSED OUT, MORE APPLICATIONS HAD SERIOUS VULNERABILITIES AND ATTACK LIKELIHOOD REMAINED ELEVATED

    As we look back on 2020, I think we all would agree that it was a year like no other. What we now know is that for many..

    CONTRAST V.5 BETA RISKSCORE RELEASE HELPS WITH APPSEC PRIORITIZATION CHALLENGES

    CONTRAST V.5 BETA RISKSCORE RELEASE HELPS WITH APPSEC PRIORITIZATION CHALLENGES

    The massive SolarWinds hack is a stark reminder of the importance of application security, but as most readers of this..