Login Book a demo

The Future of AppSec, Written Here

Everything you need to embed security into development with AI-powered application security.

All Velocity Security DevOps

Unzipping the XZ Backdoor and Its Lessons for Open Source

April 18, 2024

Unzipping the XZ Backdoor and Its Lessons for Open Source Originally posted on The New Stack. By now, you have probably heard about the recently discovered backdoor into versions 5.6.0 and 5.6.1 of the tarballs of the xz utilities, a popular compression/deco

CVE 2023-2033: What is it, and how to fix it?

April 8, 2024

CVE 2023-2033: What is it, and how to fix it?Zero-day vulnerabilities are the surprise no developer wants to get. Because these security flaws are unknown to developers, they have zero days to prepare or mitigate the vulnerability before an expl

GenAI-Powered Digital Threads Part 1 - A Novel Approach to AI Security

March 24, 2024

GenAI-Powered Digital Threads Part 1 - A Novel Approach to AI Security Engineering organizations today are becoming increasingly data-reliant. All of our tools and stacks accrue large amounts of data that are distributed among tools and platforms––from our code and our

GenAI-Powered Digital Threads Part 2 - A Novel Approach to AI Security

March 24, 2024

GenAI-Powered Digital Threads Part 2 - A Novel Approach to AI Security In our previous blog post, we spoke about borrowing the concept of Digital Threads from the manufacturing world, in order to aggregate disparate company data into a single source––a knowledge graph.

Designing Secure Tenant Isolation in Python for Serverless Apps

March 5, 2024

Designing Secure Tenant Isolation in Python for Serverless Applications About This content is brought to you by Jit - a platform that simplifies continuous security for developers, enabling dev teams to adopt a ‘minimal viable security’ mindset, and build secure cloud app

Born Left vs. Shift Left Security, and Your First Security Developer/Architect

March 5, 2024

Born Left vs. Shift Left Security, and Your First Security Developer/Architect About This content is brought to you by Jit - a platform that simplifies continuous security for developers, enabling dev teams to adopt a ‘minimal viable security’ mindset, and build secure cloud app

a checklist with the words bootstrapping a secure aws as - code

March 5, 2024

Bootstrapping a Secure AWS as-Code Environment—Your MVS Checklist IaC streamlined AWS as-code environments, but what about security? Enter MVS.

how to use aws secrets manager in the cli with examples

March 5, 2024

How to Use AWS Secrets Manager in the CLI [With Examples]That AWS Secrets Manager CLI is a master of secret management—is no secret at all. Learn secret commands that turn whispers into security.

a purple background with the words, your approach to security compliance is destroying dev culture

March 5, 2024

Your Approach to Security Compliance is Destroying Dev Culture "If we foster a dev-sec mindset from the earliest lines of code, we’ll better prepare our developers for emerging threats and risks and make compliance processes a much lighter lift for our organizati