MMediuswareinmediusware.hashnode.dev·4d ago · 10 min readOpen Source Dependency Risk: How Teams Govern and Ship FasterOpen source did not fail. What failed is how many teams manage it. Modern software is no longer built only from internal code. It is assembled from hundreds or even thousands of external packages, fra00
PKPatrick Kearnsinfullstackcity.com·Jun 13 · 12 min readHow to DDoS your own .NET appMost people think about DDoS as something hostile. Someone floods your public API, your infrastructure starts to bend, and the conversation moves towards rate limiting, WAF rules, autoscaling, caching10
FFetchLogicinfetchlogic.hashnode.dev·Apr 25 · 7 min readThe Poisoned Toolkit: How Credential Managers Became the New PerimeterA developer in Bangalore needed to automate password rotation across seventeen microservices. Another in São Paulo wanted to inject secrets into CI/CD pipelines without hardcoding them. Both reached for the same solution: a command-line interface fro...00
PPEAKIQinpeakiq.hashnode.dev·Apr 21 · 5 min readZero Trust Architecture | The Future of Secure Software DevelopmentOriginally published on PEAKIQ 🔐 Zero Trust Architecture: The Future of Secure Software Development As cyber threats grow more sophisticated, traditional perimeter-based security models no longer suffice. In today’s cloud-driven, API-connected worl...00
SSSanket Shahinblogs.deuexsolutions.com·Mar 31 · 7 min readJenkins and DevSecOps: Automating Secure Software DeliveryWhy Secure Software Delivery Has Become a Priority Software delivery used to focus on speed. Teams wanted faster releases, quicker deployments, and shorter feedback cycles. That focus has shifted. Now00
RWRao Waqas Akraminraowaqasakram.hashnode.dev·Feb 5 · 5 min read🔐 Download and Install Python Packages Offline on Linux (Secure pip Guide)Introduction In many enterprise and government environments, production servers are deliberately isolated from the internet. This is not a limitation — it is a security control. As developers, however, we still rely heavily on third-party Python pack...00
JTJames Thomasinjamestechblog.hashnode.dev·Jan 20 · 6 min readHow to Improve Software Security in 2026Cyber security is a concern that looms large in today's society. The Log4j vulnerability is another recent concern added to an already long list. While the Biden administration did issue a directive to fix vulnerabilities in hardware and software sys...00
HHonginsaysomething.hashnode.dev·Jan 15 · 3 min readThe New Era of AI-Augmented Development: Productivity, Security, and Responsible CodingRemember when AI coding assistants felt like a neat party trick? We’re well past that. Today, AI-augmented development is weaving itself into the very fabric of how we build software, moving from novelty to a fundamental workflow shift. It’s not just...00
OAOlumide Adeolainchasfatprojects.hashnode.dev·Dec 22, 2025 · 6 min readHTML Injection Explained:HTML Injection is a common yet often misunderstood web application vulnerability that occurs when user-controlled input is reflected into a web page without proper validation or output encoding. While sometimes dismissed as “harmless” compared to XSS...00
MKManish Krishna Kandrakotainmk07codeops.hashnode.dev·Dec 20, 2025 · 5 min readProject SecureFlow: Designing a Lightweight Static Taint Analyzer Using JavaParserOverview Security vulnerabilities caused by unsafe data flows remain one of the most persistent problems in software systems. User input, configuration data, and external parameters frequently propagate through applications and reach sensitive operat...00
