Skip to content

AppSec Observer: CodeSec

The latest trends and tips in DevSecOps through instrumentation and security observability. Learn about real-world insight and “in-the-trenches” experiences on topics ranging from application and information security to DevOps and risk management.

Subscribe to Blog
Contrast Scan expands support to TypeScript & Vue.js

Contrast Scan expands support to TypeScript & Vue.js

JavaScript continues to hold the title as the most utilized programming language by development teams, with a 65% score..

Detect vulnerable libraries within your GitHub environments for free

Detect vulnerable libraries within your GitHub environments for free

Combine the power of GitHub Actions for automated Continuous Integration/Continuous Deployment (CI/CD) pipelines with..

Contrast Security expands its GitHub coverage with new SCA GitHub Action

Contrast Security expands its GitHub coverage with new SCA GitHub Action

There are more than 73 million developers currently utilizing GitHub, and rightfully so, since GitHub has become a..

Find JavaScript cyber-vulnerabilities for free with CodeSec

Find JavaScript cyber-vulnerabilities for free with CodeSec

According to a 2022 Stack Overflow survey of more than 50K professional developers, JavaScript is the top programming..

Contrast Scan adds support for client-side JavaScript including Angular, React, & jQuery

Contrast Scan adds support for client-side JavaScript including Angular, React, & jQuery

Contrast has expanded its Static Analysis Security Testing (SAST) language coverage to support client-side JavaScript,..

RedMonk: Democratizing AppSec with Contrast Security

RedMonk: Democratizing AppSec with Contrast Security

In this session of RedMonk conversations. Senior analyst Rachel Stephens is joined by Contrast Security co-founder and..

How to create SBOMs for free with CodeSec by Contrast

How to create SBOMs for free with CodeSec by Contrast

A recent Executive Order from the Biden Whitehouse instructs various government agencies to take action to improve our..

Open source brings security risk, but SCA & RASP can help

Open source brings security risk, but SCA & RASP can help

For a deep dive on the security risks of OSS, listen to Contract CPO Steve Wilson’s conversation with Secure Talk. How..

Log4j still an issue, but CodeSec audit can help

Log4j still an issue, but CodeSec audit can help

Landing on the incident response boards for software engineering teams worldwide in December 2021, the Log4j..