joj123
- Karma
- 0
- Created
- ()
- Submissions
- 0
- Security tools inside coding agents get ignored unless we do things (boringappsec.com)
- The SDLC is changing and so will AppSec (again) (boringappsec.substack.com)
- Security slows down Change Management and we have a chance to fix it (boringappsec.substack.com)
- Why ADR v/s Shift-left is the wrong way to think about AppSec (boringappsec.substack.com)
- Show HN: Seezo SDR – Automated security design reviews (app.seezo.io)
Generate security requirements for every new feature built by your developers. It accepts documents (design docs,tech specs, HLD, LLD), diagrams (architecture diagrams) and Jira tickets as input. Produces Security…
- Managing LLM risk for companies using 3rd party LLMs (boringappsec.substack.com)
- Degrading UX to improve security hurts both UX and security (boringappsec.substack.com)
- Security's Prioritisation Problem (boringappsec.substack.com)
- Is CloudSec the new AppSec? tldr – not quite (boringappsec.substack.com)
- Building a static analysis program at Razorpay (engineering.razorpay.com)
- A simple framework on when WAFs work and when they may not (boringappsec.substack.com)
- Top AppSec metrics and why they are hard to measure (boringappsec.substack.com)
- Boring Appsec (boringappsec.substack.com)
- Designing for Security (increment.com)