Defending Yourself From the Trivy CI/CD Compromise: How to Check Your Exposure and Respond
Over the past few years, Boost Security’s research team at Boost Labs has been deeply curious about...
The Death of AppSec Is Greatly Exaggerated
On February 20th, Anthropic announced Claude Code Security; a new capability (for now within Claude...
Unveiling Bagel: Why Your Developer's Laptop is the Softest Target in Your Supply Chain
TL;DR We're releasing bagel, an open-source CLI that inventories security-relevant metadata on...
