Xygeni Blog

Must-Read Posts

inject environment variables to the build process

Inject Environment Variables to the Build Process Securely

Axios npm Compromise

Axios npm Compromise: What Happened, Who Is Affected, and How to Prevent It

LiteLLM Supply Chain Attack

LiteLLM Attack: How Xygeni Stops Secret Exposure Fast

LiteLLM Supply Chain Attack

LiteLLM Supply Chain Attack: How TeamPCP Backdoored AI Infrastructure

AI Coding Assistant Security: How to Prevent Vulnerabilities in AI-Generated Code

How to Implement AI Remediation in DevSecOps

open-source-software-security-tools-OSS-Security

CI CD Security

Understanding the Landscape of Open-Source Software Security

March 12, 2024

devops secrets management - secrets detection

Secrets Security

Unlocking Security: DevOps Secrets Management Best Practices

March 7, 2024

SLSA framework - Supply-chain Levels for Software

CI CD Security

Master SLSA Framework: Safeguard Your Software Supply Chain

March 5, 2024

CI/CD Security Tools - CI/CD challenges

CI CD Security

CI/CD Security: Overcoming CI/CD Challenges and Common Pitfalls

February 29, 2024

CICD-Pipelines

CI CD Security

A Deep Dive into CI/CD Pipelines Vulnerabilities (III): Artifact Poisoning and Code Injection

February 27, 2024

Implementing CI/CD Best Practices for Success

CI CD Security

CI/CD Best Practices: Transforming Software Development

February 22, 2024

create sbom - sbom generation tools -sbom security

SDLC

How to Create SBOM with Xygeni – SBOM Security

February 15, 2024

The SBOM Revolution: How Transparency Transforms Compliance and Supercharges Software Security

SDLC

SBOM Security: Strengthening Software Compliance and Protection

February 13, 2024

CI CD Security

Unveiling the Future of Software Supply Chain Security: Insights from Industry Leaders

February 12, 2024

Common Compliance Pitfalls in Software Supply Chain Security

SDLC

Common Compliance Pitfalls in Software Supply Chain Security

February 8, 2024

poisoned-pipeline-execution-II

CI CD Security

A Deep Dive into CI/CD Pipelines Vulnerabilities (II) : Indirect Poisoned Pipeline Execution (I-PPE)

February 6, 2024

The Ledger Attack: draining hardware cryptowallets

Attacks Analysis

The Ledger Attack: draining hardware cryptowallets

January 30, 2024