We Hack Purple Blog

DevSecOps Worst Practices – Untested Tools

Photo by Roman Mager on Unsplash The previous post in this series was The Boy...

DevSecOps Worst Practices – Artificial Gates

Photo by Alexei Maridashvili on Unsplash The previous post in this series was Untested Tools....

DevSecOps Worst Practices – The Boy Who Cried Wolf

Photo by Lenny Kuhne on Unsplash The previous post in this series was DevSecOps Worst Practices...

DevSecOps Worst Practices – The Series

When I started working in DevSecOps, I hadn't even done DevOps before...

The Difference Between SCA and Supply Chain Security

Right now, the concept of the software supply chain and securing it...

We Hack Purple Joins Forces with Semgrep!

Hey there, fellow developers, AppSec pros, and InfoSec professionals! Have you heard...

API10:2019 Insufficient Logging & Monitoring

In the previous post we covered API9:2019 Improper Assets Management, which was...

API9:2019 Improper Assets Management

In the previous post we covered API8:2019 Injection, which was the 8th...

API8:2019 Injection

In the previous post we covered API7:2019 Security Misconfiguration, which was the...

API7:2019 Security Misconfiguration

In the previous post we covered API6:2019 Mass Assignment, which was the...

API6:2019 Mass Assignment

In the previous post we covered API5:2019 Broken Function Level Authorization, which...

API5:2019 Broken Function Level Authorization

In the previous post we covered API4:2019 Lack of Resources & Rate...