Compliance & Frameworks

Software Supply Chain Security: Your Attack Surface Is Bigger Than You Think

April 3, 2024February 28, 2022 by Julie Peterson

Software Supply Chain Security and SDLC Attack Vectors

When most organizations approach software supply chain security, too often they think only about securing the open source or third-party dependencies in their code.

Implementing SLSA Source Requirements to Improve Software Supply Chain Security

December 18, 2025February 24, 2022 by Tony Loehr

SLSA source requirements help mitigate threats originating from source control management.

NIST SSDF 1.1: A Brief Overview of the Final Version

December 17, 2025February 16, 2022 by Tony Loehr

The 2021 Executive Order on strengthening the nation’s cybersecurity prompted NIST to create documents on secure software development practices.

Executive Order 14028: NIST SSDF Explained

December 17, 2025December 13, 2021 by Tony Loehr

The President’s Executive Order (EO) on “Improving the Nation’s Cybersecurity (14028),” issued on May 12, 2021, charges multiple agencies…

NIST Cybersecurity Framework (NIST CSF)

December 17, 2025November 28, 2021 by Tony Loehr

The National Institute of Standards and Technology (NIST) first released its Cybersecurity Framework in 2014 in response to an Obama-era Executive Order mandating…

Google SLSA Framework: Key Takeaways

September 28, 2025November 10, 2021 by Tony Loehr

In light of recent, multi-billion dollar cyber attacks, Google has introduced a framework to help developers improve software supply chain security. This proposed solution is…

Start Securing the 10x Developer TodayDiscover the power of Cycode for your team.

Start Securing the 10x Developer Today
Discover the power of Cycode for your team.