Hardening SDLC

Introducing an All-New Cycode: The Only Complete Approach to ASPM

April 29, 2025November 14, 2023 by Amir Kazemi

There’s no surprise that in today’s lightning fast paced development environment, speed, and efficiency are non-negotiable…

Introducing Bulk Remediation for Software Composition Analysis (SCA)

April 29, 2025November 7, 2023 by Nir Amara

Cycode Software Composition Analysis (SCA) now includes bulk remediation. This new feature allows users to efficiently address multiple vulnerabilities across different repositories…

What Is ASPM (Application Security Posture Management)?

July 8, 2025November 2, 2023 by Julie Peterson

Application Security Posture Management (ASPM) is an AppSec platform that continuously assesses…

Pipeline Composition Analysis: Expanding Visibility to Build Better Software Supply Chain Security

August 11, 2025December 7, 2022 by Julie Peterson

Software supply chain attacks have been on the rise over the past several years. We see evidence of this daily with more and more headlines proclaiming SolarWinds-style attacks. In fact, Gartner predicts that by 2025, nearly half of all organizations will have experienced an attack on their software supply chain. In response to this rapid … Read more

5 Steps to Protect Code Integrity in Software Pipelines

August 12, 2025April 12, 2022 by Jon Jarboe

Get 5 straightforward steps that any organization can take to harden their pipelines to keep attackers out.

Hardening Your SDLC in Response to Lapsus$ Breaches

June 8, 2025March 22, 2022 by Ronen Slavin

Over the last several weeks, Lapsus$ has taken down a who’s who of software development teams: NVIDIA, Samsung, Vodafone, Ubisoft, and Mercado Libre.

How We Discovered Vulnerabilities in CI/CD Pipelines of Popular Open-Source Projects

April 3, 2024March 18, 2022 by Alex Ilgayev

Cycode discovered critical vulnerabilities in several popular open-source projects, each of which can cause a supply-chain attack through the CI process.

Cycode Workflows: No-Code Automated Alerting & Remediation

May 16, 2024March 3, 2022 by Tony Loehr

Cycode workflows allow users to automate security functions such as alerting, ticketing, and remediation that respond directly to triggered violations or vulnerabilities.

Software Supply Chain Security: Your Attack Surface Is Bigger Than You Think

April 3, 2024February 28, 2022 by Julie Peterson

Software Supply Chain Security and SDLC Attack Vectors

When most organizations approach software supply chain security, too often they think only about securing the open source or third-party dependencies in their code.

Jenkins Security Best Practices

November 30, 2025February 28, 2022 by Alex Ilgayev

Jenkins is one of the most well-known tool for creating automation pipelines and integrating them with the rest of your CI/CD tools. It has an active community that has contributed thousands of plugins to extend Jenkins’ core functionality…

Start Securing the 10x Developer TodayDiscover the power of Cycode for your team.

Start Securing the 10x Developer Today
Discover the power of Cycode for your team.