Ronen Slavin
Co-Founder & CTO
Ronen Slavin is the Co-Founder and Chief Technology Officer (CTO) at Cycode, a company specializing in Application Security Posture Management (ASPM). With extensive expertise in cybersecurity, he leads Cycode's technical vision and product development. His work focuses on safeguarding software development processes from code to cloud, ensuring robust security measures across the entire software development lifecycle.
- September 21, 2025
Shai-Hulud NPM Supply Chain Attack
What happened? The Shai-Hulud npm attack is a sophisticated cyberattack targeting the open-source registry, npm. It involves a self-propagating worm,...
- September 9, 2025
npm debug / chalk Supply-Chain Attack: The Complete Guide
Multiple popular npm packages (including debug, chalk, and core dependencies like ansi-styles, strip-ansi, supports-color) were published with malicious, browser-side code...
- March 27, 2025
The Essential Role of Supply Chain Security in ASPM
Threat actors are continuously evolving their tactics to exploit vulnerabilities and gain unauthorized access. That increasingly involves attacks targeting the...
- December 4, 2024
The EU AI Act: A New Era for AI Governance (and What it Means for You)
The EU AI Act is a landmark regulation aimed at ensuring the safe and ethical development and use of artificial...
- November 14, 2024
New EU Product Liability Directive: Impact on Software Producers with Real-Life Examples
The updated EU Product Liability Directive (PLD) marks a significant shift in consumer protection by expanding liability to digital products...
- December 20, 2023
Connecting the Dots: NIST SSDF, Self-Attestation, and a Complete ASPM Platform
In today’s hyper-connected world, secure software development is no longer an option, it’s a necessity. Yet achieving true security demands...
- October 5, 2023
Controlled Shift Left: A Strategic Blueprint for Modern Software Security with Cycode
In the dynamic realm of software development, the concept of “Shift Left” has evolved from a mere buzzword to a...
- September 14, 2023
Secure Development Best Practices: Building Resilient Software Applications
With the rise of cloud-native software and the more recent explosion in the use of generative AI, the importance of...
- August 15, 2023
Understanding Software Bill of Materials (SBOM): Enhancing Transparency and Security in Software Supply Chains
We will explore the background of SBOM and SLSA compliance by reviewing the executive order. Then, we will explain what...
- August 9, 2023
The JumpCloud Attack: What We Know So Far
In a recent cybersecurity incident, North Korean hackers targeted JumpCloud, an enterprise software company. Mandiant, CrowdStrike and SentinelOne attributed the...
- July 12, 2023
How to Mitigate the 6 Threats on your CI/CD Environment Listed in CISA & NSA CSI
Continuous Integration and Continuous Deployment (CI/CD) environments are integral to the modern...
- April 25, 2023
SLSA 1.0: Improving Software Supply Chain Security
The OpenSSF recently made a big announcement with the release of SLSA (Supply-chain Levels for Software Artifacts) version 1.0...
