Mastodon

13 posts11 participants0 posts today

OWASP FoundationExcited about <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> Global <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> EU? Join us as a volunteer at the event! We need your help to make it a success. Fill out the form now and be part of something amazing! <a href="https://owasp.wufoo.com/forms/z1jihpei0ws2e3v/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.wufoo.com/forms/z1jihpei0ws2e3v/</a><a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

The Linux FoundationCloud native adoption, AI, and security remain key focus areas in 2024. The latest report from LF Research and CNCF highlights the trends shaping the industry.📖 Read the report: <a href="https://www.linuxfoundation.org/research/cncf-2024-annual-survey?hsLang=en" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.linuxfoundation.org/research/cncf-2024-annual-survey?hsLang=en</a><a href="https://social.lfx.dev/tags/CloudNative" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CloudNative</a> <a href="https://social.lfx.dev/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Kubernetes</a> <a href="https://social.lfx.dev/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> <a href="https://social.lfx.dev/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a>

OWASP FoundationOWASP Global AppSec EU 2025 Barcelona May 26-30Take a sneak peak of the agenda for day 5 conference!You won’t want to miss out on the cutting-edge content and networking opportunities in beautiful Barcelona!The full agenda is now live on our website!Register today! <a href="https://owasp.glueup.com/event/123983/register/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.glueup.com/event/123983/register/</a><a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> <a href="https://infosec.exchange/tags/AppSecEU2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSecEU2025</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://infosec.exchange/tags/SecureCoding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecureCoding</a> <a href="https://infosec.exchange/tags/ThreatModeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatModeling</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barcelona</a>

Marco Ciappelli🎙️✨:verified: :donor:Yes, it is true! 😏 🎙️💻 It's Webinar Time!... and we’re back with another ITSPmagazine Thought Leadership Webinar — because impactful conversations and meaningful perspective exchanges are what we’re all about.🚀 After the success of our debut session “AI In Healthcare: Who Benefits, Who Pays, And Who’s At Risk?” (missed it? Watch it on demand 👉 <a href="https://www.crowdcast.io/c/ai-in-healthcare-who-benefits-who-pays-and-whos-at-risk-an-itspmagazine-thought-leadership-webinar-march-2025-3eeb9725b912" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.crowdcast.io/c/ai-in-healthcare-who-benefits-who-pays-and-whos-at-risk-an-itspmagazine-thought-leadership-webinar-march-2025-3eeb9725b912</a>) —we’re diving back in with a brand-new conversation focused on the heart of what drives our work: cybersecurity, technology, and society.💡 Secure Coding = Developer Power: How To Convince Your Boss To Invest In You An ITSPmagazine Webinar With Manicode Security 🗓️ April 16, 2025We’re honored to welcome two brilliant minds joining Sean Martin, CISSP — yes, of course, he’s pretty sharp too 😬 — for this one:🎙️💥 Jim Manico, Founder and Secure Coding Educator at Manicode Security 🎙️💥 Jimmy Mesta 🤙, Course Instructor for Manicode and CTO at RAD SecurityWhy does <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securecoding</a> still feel like an afterthought? This session tackles that question head-on—covering why most companies don’t invest in secure coding training, how developers can advocate for themselves, and how this skillset can seriously boost your career. We’ll even get into some live code reviews and automation demos you won’t want to miss.🔐💥 Secure Coding = Developer Power: How To Convince Your Boss To Invest In You 🗓️💥 LIVE: April 16, 2025 📍💥 REGISTER HERE: <a href="https://www.crowdcast.io/c/secure-coding-equals-developer-power-how-to-convince-your-boss-to-invest-in-you-an-itspmagazine-webinar-with-manicode-security-ad147fba034a" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.crowdcast.io/c/secure-coding-equals-developer-power-how-to-convince-your-boss-to-invest-in-you-an-itspmagazine-webinar-with-manicode-security-ad147fba034a</a>Be sure to share this with your fellow <a href="https://infosec.exchange/tags/developers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#developers</a>, coworkers, and anyone who cares about building safer software and smarter teams. This is your chance to invest in yourself—and help your company do the same.LET'S go, we can do this!!! 🤘😬✨ <a href="https://infosec.exchange/tags/webinar" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webinar</a>, <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securecoding</a>, <a href="https://infosec.exchange/tags/developerlife" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#developerlife</a>, <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>, <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>, <a href="https://infosec.exchange/tags/softwaresecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#softwaresecurity</a>, <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a>, <a href="https://infosec.exchange/tags/itspmagazine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#itspmagazine</a> <a href="https://infosec.exchange/tags/infosecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosecurity</a> <a href="https://infosec.exchange/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> <a href="https://infosec.exchange/tags/technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#technology</a> <a href="https://infosec.exchange/tags/software" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#software</a> <a href="https://infosec.exchange/tags/programmers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#programmers</a>

N3NFind and protect your third-party GitHub actions from supply-chain attacks with Scharf.Scharf is a blazing fast, scanner and lookup tool to find all GitHub workflow actions with mutable references.<a href="https://sfba.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://sfba.social/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#github</a> <a href="https://sfba.social/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://sfba.social/tags/software" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#software</a><a href="https://github.com/cybrota/scharf" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/cybrota/scharf</a>

OWASP FoundationAre you excited about <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> Global <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> EU in May? Picture yourself dashing between sessions, networking over coffee... How about adding mentoring to your experience? Be a Mentor! Join us: <a href="https://owasp.wufoo.com/forms/zk2cdkr1qla6o8/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.wufoo.com/forms/zk2cdkr1qla6o8/</a> 🚀 <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a>

OWASP Foundation🌟 Ready to shine on stage? 🌟 Share your expertise at <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> Global <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> USA in Washington, DC this November! Submit your presentations now for this incredible event! Seize the opportunity - apply here: <a href="https://sessionize.com/owasp-global-appsec-USA-2025-cfp2/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://sessionize.com/owasp-global-appsec-USA-2025-cfp2/</a> 🎤 <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://infosec.exchange/tags/SBOMM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SBOMM</a>

DSigmundAI-generated code is powerful—but dangerous if used carelessly. Are you “vibe coding” without realizing the risks? Learn why blind trust in AI introduces vulnerabilities and how DevSecOps can help you avoid the hidden traps.<a href="https://techhub.social/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://techhub.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://techhub.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://techhub.social/tags/SecureCoding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecureCoding</a> <a href="https://techhub.social/tags/VibeCoding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#VibeCoding</a><a href="https://webdad.eu/2025/03/31/code-ai-and-security-avoiding-the-hidden-traps-of-ai-generated-code/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://webdad.eu/2025/03/31/code-ai-and-security-avoiding-the-hidden-traps-of-ai-generated-code/</a>

SyftBoost JS security & visibility! 🛡️ Our guide explains how to create SBOMs using the free tool Syft. Identify vulnerabilities, manage licenses & understand your full dependency picture. 👉 <a href="https://anchore.com/blog/javascript-sbom-generation/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://anchore.com/blog/javascript-sbom-generation/</a> <a href="https://fosstodon.org/tags/JavaScript" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#JavaScript</a> <a href="https://fosstodon.org/tags/SBOM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SBOM</a> <a href="https://fosstodon.org/tags/SupplyChainSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SupplyChainSecurity</a> <a href="https://fosstodon.org/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://fosstodon.org/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> <a href="https://fosstodon.org/tags/Syft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Syft</a>

OWASP FoundationMaster Modern Web App Security at OWASP Global AppSec EU 2025 in Barcelona!2-Day Training | May 27-28, 2025 Level: Intermediate | Trainer: Abraham Aranguren Take a 100% hands-on deep dive into the OWASP Security Testing Guide and Application Security Verification Standard (ASVS) in this action-packed course. Register now ⬇️ <a href="https://owasp.glueup.com/event/123983/register/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.glueup.com/event/123983/register/</a><a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> <a href="https://infosec.exchange/tags/AppSecEU2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSecEU2025</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/PenTesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PenTesting</a> <a href="https://infosec.exchange/tags/WebSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WebSecurity</a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://infosec.exchange/tags/NodeJS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NodeJS</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barcelona</a>

Brian Greenberg🔒 How to Report Security Issues in Open Source—ResponsiblySecurity flaws happen—but how we handle disclosure matters.In this smart and timely guide, Jacob Kaplan-Moss outlines the three-step process for responsible vulnerability reporting in open source software (OSS):✔️ Report the issue privately to maintainers ⏳ Allow a reasonable time frame (up to 3 months) for a fix 📢 If needed, publicly disclose to protect usersKaplan-Moss also explains how to find contact info, the ethics of disclosure timelines, and tools available to OSS maintainers.This is must-read content for anyone in security, development, or open source governance.👉 <a href="https://jacobian.org/2025/mar/27/reporting-security-issues-in-oss/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://jacobian.org/2025/mar/27/reporting-security-issues-in-oss/</a><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://infosec.exchange/tags/ResponsibleDisclosure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ResponsibleDisclosure</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a>

sc0v0neMCP, Agentic Knowledge Graphs & AI Models: Solving Conversational Analytics<a href="https://www.eventbrite.com/e/mcp-agentic-knowledge-graphs-ai-models-solving-conversational-analytics-tickets-1304648411519?aff=ebemoffollowpublishemail&ref=eemail&utm_campaign=following_published_event&utm_content=follow_notification&utm_medium=email&utm_source=eventbrite" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.eventbrite.com/e/mcp-agentic-knowledge-graphs-ai-models-solving-conversational-analytics-tickets-1304648411519?aff=ebemoffollowpublishemail&ref=eemail&utm_campaign=following_published_event&utm_content=follow_notification&utm_medium=email&utm_source=eventbrite</a>In this free webinar led by ex-Snowflake, Cloudera, and Amazon leaders, we'll unveil how cutting-edge LLMs (GPT 4.5, Sonnet 3.7, Deepseek V3/R1, Gemini 2.5, etc.) are revolutionizing data products. <a href="https://mastodon.social/tags/python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#python</a> <a href="https://mastodon.social/tags/machinelearning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#machinelearning</a> <a href="https://mastodon.social/tags/deeplearning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#deeplearning</a> <a href="https://mastodon.social/tags/ai" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ai</a> <a href="https://mastodon.social/tags/developer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#developer</a> <a href="https://mastodon.social/tags/dev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dev</a> <a href="https://mastodon.social/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://mastodon.social/tags/devops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devops</a> <a href="https://mastodon.social/tags/mlops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mlops</a> <a href="https://mastodon.social/tags/learn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#learn</a> <a href="https://mastodon.social/tags/learning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#learning</a> <a href="https://mastodon.social/tags/study" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#study</a> <a href="https://mastodon.social/tags/git" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#git</a> <a href="https://mastodon.social/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#github</a> <a href="https://mastodon.social/tags/codeberg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#codeberg</a> <a href="https://mastodon.social/tags/tensorflow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tensorflow</a> <a href="https://mastodon.social/tags/pytorch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pytorch</a> <a href="https://mastodon.social/tags/jax" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#jax</a> <a href="https://mastodon.social/tags/huggingface" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#huggingface</a> <a href="https://mastodon.social/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://mastodon.social/tags/ubuntu" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ubuntu</a> <a href="https://mastodon.social/tags/popos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#popos</a> <a href="https://mastodon.social/tags/llm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#llm</a>

OWASP FoundationOWASP Global AppSec EU 2025 Barcelona May 26-30Day 1 of the conference, May 29, is packed with exciting sessions, keynotes, and networking opportunities designed to elevate your AppSec knowledge and connect you with industry leaders. The full agenda is now live on our website! Don’t wait – secure your spot today! <a href="https://owasp.glueup.com/event/123983/register/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.glueup.com/event/123983/register/</a><a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> <a href="https://infosec.exchange/tags/AppSecEU2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSecEU2025</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://infosec.exchange/tags/SecureCoding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecureCoding</a> <a href="https://infosec.exchange/tags/ThreatModeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatModeling</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barcelona</a>

Hackread.com🚨 Malware warning: A new npm attack targets the popular Ethereum library ethers, sneaking in a backdoor to take control of systems.Read: <a href="https://hackread.com/npm-malware-infects-ethereum-library-with-backdoor/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://hackread.com/npm-malware-infects-ethereum-library-with-backdoor/</a><a href="https://mstdn.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://mstdn.social/tags/npm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#npm</a> <a href="https://mstdn.social/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a> <a href="https://mstdn.social/tags/Ethereum" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Ethereum</a> <a href="https://mstdn.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a>

Kubewarden🚀 The wait is over—Kubewarden 1.23 is here! Packed with security enhancements, smoother workflows, and key updates to elevate your Kubernetes experience. Dive into what's new: <a href="https://www.kubewarden.io/blog/2025/03/kubewarden-1.23-release" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.kubewarden.io/blog/2025/03/kubewarden-1.23-release</a> 🌟 <a href="https://hachyderm.io/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Kubernetes</a> <a href="https://hachyderm.io/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://hachyderm.io/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> <a href="https://hachyderm.io/tags/PolicyAsCode" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PolicyAsCode</a>

Anders EknertRegal v0.32.0 just dropped! After having worked mostly on language server features recently, it was time for the linter to get some love. This release includes 3 new linter rules as well as much faster linting. Check it out!<a href="https://github.com/StyraInc/regal/releases/tag/v0.32.0" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/StyraInc/regal/releases/tag/v0.32.0</a><a href="https://swecyb.com/tags/OPA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OPA</a> <a href="https://swecyb.com/tags/Rego" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Rego</a> <a href="https://swecyb.com/tags/Regal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Regal</a> <a href="https://swecyb.com/tags/PolicyAsCode" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PolicyAsCode</a> <a href="https://swecyb.com/tags/CloudNative" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CloudNative</a> <a href="https://swecyb.com/tags/DevOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevOps</a> <a href="https://swecyb.com/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a>

OWASP FoundationMaster Privacy Engineering at OWASP Global AppSec 2025 EU in Barcelona!2-Day Training | May 27-28, 2025 Level: Intermediate | Trainers: Kim Wuyts & Avi DouglenLed by Kim Wuyts and Avi Douglen, you'll gain hands-on experience tackling privacy challenges while addressing the growing skills gap in privacy engineering.<a href="https://owasp.glueup.com/event/123983/register/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.glueup.com/event/123983/register/</a><a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barcelona</a> <a href="https://infosec.exchange/tags/OWASPGlobalAppSecEU2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASPGlobalAppSecEU2025</a> <a href="https://infosec.exchange/tags/PrivacyEngineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PrivacyEngineering</a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/PrivacyByDesign" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PrivacyByDesign</a>

GrypeWe're not just scanning containers, we're keeping elite company. Grype listed as a top pen testing tool! <a href="https://www.techtarget.com/searchsecurity/tip/11-open-source-automated-penetration-testing-tools" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.techtarget.com/searchsecurity/tip/11-open-source-automated-penetration-testing-tools</a> <a href="https://fosstodon.org/tags/vulnerabilityscanning" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerabilityscanning</a> <a href="https://fosstodon.org/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a>

0x40kWow, things are getting wild in the Kubernetes world! The name alone – "IngressNightmare" – gives me chills! 🤯 It's crucial to know this affects the Ingress NGINX Controller, *not* the NGINX Ingress Controller. That's a big difference!Wiz really uncovered something huge. We're talking over 6,500 vulnerable clusters, with the potential for some serious Remote Code Execution (RCE). Ouch! They found that a scary 43% of cloud environments are impacted.It appears, that these kinds of vulnerabilities often slip past standard scans. You really need manual penetration testing to catch them. And as a pentester myself, I can tell you, it's frequently like digging for buried treasure! 😅Here are the CVEs to watch out for: CVE-2025-24513, CVE-2025-24514, CVE-2025-1097, CVE-2025-1098, CVE-2025-1974. These have a CVSS score of 9.8! So, you'll want to update to 1.12.1, 1.11.5, or 1.10.7 *immediately*. Another crucial step? See if your Admission Webhook Endpoint is exposed. Make sure you're limiting access. Don't need it? Then, turn it off!So, what are your experiences with K8s security? I'm curious, what tools do you swear by? 🤔<a href="https://infosec.exchange/tags/kubernetes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kubernetes</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloudsecurity</a>

Recent searches

Search options

Administered by:

Server stats:

#devsecops