Code Tampering: 4 Keys to Pipeline Integrity

Code tampering is a software company’s worst nightmare. Unfortunately, code tampering is leading to new major software supply chain attacks nearly every month: SolarWinds, Accellion, Click Studios, PHP, CodeCov, Kaseya, Log4Shell and the list goes on.

ISO 27001 Compliance

CrateDepression is a software supply chain attack designed to target GitLab CI Pipelines by impersonating legitimate Rust packages and their developers.

Security Advisory: CrateDepression

CrateDepression is a software supply chain attack designed to target GitLab CI Pipelines by impersonating legitimate Rust packages and their developers.

SOC 2 Type II Compliance

SOC 2 Type II is prescribed to organizations handling sensitive information to verify the safe handling of precious data.