Bearer | Industry Focus

Industry Focus

What does a modern code security pipeline look like? (Hint: not like a pipeline).

August 22, 2023

What does an ideal DevSecOps pipeline look like for code security? We've crafted a blueprint to kickstart your journey.

Guillaume Montard

Industry Focus

Scaling Secure Code Review in Modern Enterprises

August 15, 2023

Security engineers often struggle to scale code reviews due to funding, short sprint cycles, and agile integration issues. This post discusses solutions.

Guest Contributor

Industry Focus

Software Security 2.0 - Securing AI Generated Code

August 4, 2023

Machine learning in software dev is a game-changer, but beware: new research reveals AI-assisted coding might lead to more insecure code.

Andrew Becherer

Nipun Gupta

Industry Focus

The implications of adding SAST to your CI/CD pipeline

May 18, 2023

Continuous integration and deployment pipelines are the ideal places for final checks before production, but should you add big SAST scans into the mix?

Mark Michon

Industry Focus

DevSecOps for OpenAI: detecting sensitive data shared with generative AIs

May 4, 2023

The rapid adoption of generative AIs is exciting but comes with the same data risks as any third-party service.

Mark Michon

Andrew Becherer

Industry Focus

How to Assess Third-Party Data Security

March 29, 2023

Third parties are a prime source of leaks and breaches when it comes to sensitive data, but there are ways you can properly vet them to minimize risk.

Guest Contributor

Industry Focus

Can we prevent a security incident like Loom’s?

March 21, 2023

Loom experienced a security incident caused by an unusual source—the order of their express middleware. Here's how to detect the problem in your own code.

Mark Michon

Industry Focus