/Security

Startup Getting Started? Think Pragmatic Security

tl;dr: There is an assumption that security should be the main priority for a founder when getting your startup going. Think again. Security is a tool to protect your customers and your business, and a founder’s main concern is growing that business. That’s a good thing -- here's how.

featured in #318

Best Practices To Keep Your Projects Secure On GitHub

- Justin Hutchings tl;dr: "With Dependabot, not only can you catch vulnerable dependencies, but you can fix them as well. It automatically checks your dependency files for outdated requirements and opens individual pull requests for any it finds. It then notifies you and suggests fixes."

featured in #315

Startup Getting Started? Think Pragmatic Security

tl;dr: There is an assumption that security should be the main priority for a founder when getting your startup going. Think again. Security is a tool to protect your customers and your business, and a founder’s main concern is growing that business. That’s a good thing -- here's how.

featured in #314

A Note From Doppler

tl;dr:  Doppler is building the first SecretOps platform to empower developers and security teams of all sizes to seamlessly manage secrets across environments and teams. 

featured in #313

Startup Getting Started? Think Pragmatic Security

tl;dr: There is an assumption that security should be the main priority for a founder when getting your startup going. Think again. Security is a tool to protect your customers and your business, and a founder’s main concern is growing that business. That’s a good thing -- here's how.

featured in #312

I'm A Security Engineer And I Still Almost Got Scammed

- Robert Heaton tl;dr: "I was in the park with my son and his best friend. I saw 2 missed calls from a number I didn’t recognize. I Googled it - it was my bank. I told the other adults that I should call back in case it was important."

featured in #311

Startup Getting Started? Think Pragmatic Security

tl;dr: There is an assumption that security should be the main priority for a founder when getting your startup going. Think again. Security is a tool to protect your customers and your business, and a founder’s main concern is growing that business. That’s a good thing -- here's how.

featured in #310

Early Security For Startups

- Devdatta Akhawe tl;dr: Figma's Head of Security is often asked how to approach security. Here he covers topics such as ransomeware, cloud misconfigurations, credential stuffing, and more. 

featured in #307

Dumb Things You Can Sometimes Do With Hard Links

tl;dr: "Here's a very old and stupid trick you could do with some filesystems in some situations back in the day... and might still be able to do in a few places today."

featured in #300

The Dirty Pipe Vulnerability

- Max Kellermann tl;dr: "This is the story of CVE-2022-0847, a vulnerability in the Linux kernel since 5.8 which allows overwriting data in arbitrary read-only files. This leads to privilege escalation because unprivileged processes can inject code into root processes."

featured in #297