Security17 articles

Latest post Preventing Cross-Site Scripting (XSS) in Java applications with Snyk Code

By taking a proactive approach to XSS prevention and using the right resources and tools, developers can help ensure the security and integrity of their Java web applications.

Brian Vermeer

June 09, 2023

Making SBOMs, Threats, and Modelling Them a Piece of Cake!

The third article in a series on SBOMs, software supply chains, the government and you, introducing threat modelling and tools to help!
Dan Conn

March 07, 2023
Developer Tools
Security
Make Your Security Policy Auditable

Learn how you can leverage OPA and Apache APISIX to move your authentication and authorization logic from the code to the infrastructure.
Nicolas Frankel

February 28, 2023
Security
SBOMs and Software Composition Analysis

Let’s learn all about software composition analysis, how they work and why it is important for developers to get started as soon as possible!
Jamie Coleman

February 27, 2023
Developer Tools
DevOps
Research
Security
Tools
Foojay Podcast #7: Security in Java, what do we need to know and how to keep our applications secure?

We invited Java security experts to dive into the fascinating world of secure coding and detecting vulnerabilities in your Java applications!
Brian Vermeer,

Erik Costlow,

Frank Delporte

November 21, 2022
Developer Tools
DevOps
Foojay
Java Core
Podcast
Security
Learning by Auditing Kubernetes Manifests

Find out about Checkov, which scans cloud infrastructure configurations to find misconfigurations before they’re deployed.
Nicolas Frankel

September 05, 2022
DevOps
Research
Security
How to do password hashing in Java applications the right way!

There are multiple ways to store sensitive passwords. And while having choices can be great, in the context of password storage, picking wrong can be a security nightmare. With that in mind, let’s hash out some of your options 🥁🥁.In this article …
Brian Vermeer

May 12, 2022
Security
Quick Fire Java: Java After Log4j

Watch a 10 minute discussion on Log4j, security processes and prioritization, and how Payara dealt with the vulnerability.
Jadon Ortlepp

March 31, 2022
Payara
Security
Videos
Security Warning: Your Java Attack Surface Just Got Bigger

Learn about common threats, vulnerabilities, and misconfiguration including the recently disclosed issues in Log4j.
Brian Vermeer

March 17, 2022
Security
Videos
Detecting, Investigating and Verifying Fixes for Security Incidents and Zero Day Issues Using Lightrun

Learn about major milestones in app security: finding the issue, evaluating a breach, proving it, and validating the fix!
Shai Almog

March 10, 2022
Security
You’re Running Untrusted Code!

I’m afraid the deprecation of the Security Manager just added several lines to that risk, all linked to running untrusted code.
Nicolas Frankel

January 17, 2022
JEPs
Security

1-11 of 17

Security17 articles

Set Event Reminder

Subscribe to foojay updates: