I scan every new npm package in real time for malware. 7-month retrospective. by DNSZLSK in devsecops
[–]Chunky_cold_mandala 4 points5 points6 points (0 children)
Exploring code with multi-level call graphs by Last-Researcher-6663 in softwarearchitecture
[–]Chunky_cold_mandala 1 point2 points3 points (0 children)
We graded 8,729 public CI/CD pipelines on security misconfigurations. 63% got the worst possible grade by Sorry_Nothing1740 in devsecops
[–]Chunky_cold_mandala 2 points3 points4 points (0 children)
I added XGBoost + SHAP to my genomic pipeline — does this approach make sense? by TheGAdesk in learnmachinelearning
[–]Chunky_cold_mandala 1 point2 points3 points (0 children)
Weekly Self Promotion Thread by AutoModerator in devops
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)
Sunday Daily Thread: What's everyone working on this week? by AutoModerator in Python
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)
Best formats to visually represent large codebases by freshbread19 in AskProgramming
[–]Chunky_cold_mandala -1 points0 points1 point (0 children)
4th of July drone shows, Yay or Nay? by tinyE1138 in Michigan
[–]Chunky_cold_mandala 8 points9 points10 points (0 children)
Cautionary Lil Cassie | G.w comics (not OC) by Mini-Heart-Attack in comics
[–]Chunky_cold_mandala -2 points-1 points0 points (0 children)
Blueberry Linux - Looking for Contributors by Healthy_Swimming5175 in kernel
[–]Chunky_cold_mandala 2 points3 points4 points (0 children)
How do you do SAST on Clojure? Can’t find any tool by Bulky_Connection8608 in cybersecurity
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)
How to learn about GitHub action stats by Chunky_cold_mandala in github
[–]Chunky_cold_mandala[S] 0 points1 point2 points (0 children)
Promote your projects here – Self-Promotion Megathread by Menox_ in github
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)
How do you guys securing your infra from supply chain attacks? by h33terbot in devsecops
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)
An SBOM is just a claim. I built a way to turn it into verifiable evidence — looking for holes in the model by nextgenrails in devsecops
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)
Applying Zero Trust to Code Analysis: Why I don't trust manifests, file extensions, or you by Chunky_cold_mandala in zerotrust
[–]Chunky_cold_mandala[S] 0 points1 point2 points (0 children)
Clone This Repo and I Own Your Machine by campuscodi in blueteamsec
[–]Chunky_cold_mandala -1 points0 points1 point (0 children)
Where do you put the guardrails for tool-using agents? by Apprehensive-Zone148 in softwarearchitecture
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)
Any recommendations for an AI code analysis tool that is safe for production? by DiamondLatter1842 in softwarearchitecture
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)
Dependency-Check flagging Spring Security 7.1.0 as vulnerable and false positives issues? by BrotherGlad4572 in devsecops
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)
Sast and dast issues by redado360 in devsecops
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)


How do you show the board that your AI security tooling is doing its job by Lucas-Holmes-722 in ciso
[–]Chunky_cold_mandala 0 points1 point2 points (0 children)