Skip to content

AppSec Observer

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    Priorities in Agile Lead to Software Observability in Annual Agile Report

    Priorities in Agile Lead to Software Observability in Annual Agile Report

    It has been nearly 20 years since a group of 17 software developers conceived the “Manifesto for Agile Software..

    Mitigating the Risks of Open-source Software in DevOps

    Mitigating the Risks of Open-source Software in DevOps

    Speed matters when it comes to developing and releasing a new software title—nearly two-thirds of software companies..

    Getting Started with Contrast Security Community Edition for Java

    Getting Started with Contrast Security Community Edition for Java

    Traditional code scanning tools for application security (AppSec) bog down DevOps workflows and suffer from major..

    Application Security Testing (AST) Tools After Hours

    Application Security Testing (AST) Tools After Hours

    Do you ever wonder how effective application security (AppSec) testing really is? Or which approach is best?..

    Digital Transformation Moves Application Security to the Top CISO/CSO Priority

    Digital Transformation Moves Application Security to the Top CISO/CSO Priority

    Application security plays a critical role in enabling digital transformation. COVID-19 compressed initiatives that..

    Remote Code Execution Deserialization Vulnerability Blocked by Contrast

    Remote Code Execution Deserialization Vulnerability Blocked by Contrast

    On May 20, 2020, the National Vulnerability Database (NVD) published a new CVE—CVE-2020-9484. The vulnerability..

    Open-Source Python Salt CVEs and the Cisco Server Breach

    Open-Source Python Salt CVEs and the Cisco Server Breach

    Hackers recently exploited two critical vulnerabilities (CVEs) in SaltStack’s "Salt" management framework in order to..

    Legacy SAST and the Fallacy of 100% Code Coverage

    Legacy SAST and the Fallacy of 100% Code Coverage

    In October of 2019, three months into my tenure at Contrast Security, I received a challenge question from a customer..

    Manual Application Vulnerability Management Delays Innovation While Increasing Business Risk

    Manual Application Vulnerability Management Delays Innovation While Increasing Business Risk

    Traditional approaches to application security (AppSec), such as legacy static application security testing (SAST) and..

    Prev 43 44 45 46 47 Next