Topic

#Security

55 articles on Security — news, releases, guides and analysis from the SourceFeed engine.

Inside JumpServer: Open-Source PAM for Modern Infrastructure

A self-hostable alternative to commercial PAM platforms brings browser-based access control, but its multi-component architecture requires careful management.

Emeka Okafor

Scan Your Containers and Dependencies for CVEs with Trivy in CI

Wire Trivy into GitHub Actions to automatically block pull requests that introduce critical or high vulnerabilities in your Docker images or dependency files.

Tutorial · 2w ago0

Eyes Open, Vulnerabilities Shipping: The AI Code Security Paradox

A Checkmarx survey of 2,350 developers and security leaders finds 70% believe AI-generated code is more vulnerable — and nearly a third ship it to production anyway. The tools exist. The process doesn't.

Article · 2w ago0

Arbitrary Code Execution in objdump -g: How a Missing Bounds Check Becomes a Full Exploit

A heap out-of-bounds write in the FR30 relocation handler lets a crafted object file run attacker code when inspected with `objdump -g` — and the exploit defeats ASLR, PIE, and heap hardening in a single shot.

Article · 2w ago0

Stop Hardcoding Secrets: Environment Variables Done Right

Move credentials out of your source code with .env hygiene, per-environment config, and a secrets manager — using patterns that work in any language.

Tutorial · 3w ago0

Connect to Your Production Server Securely from Your Dev Machine

Stop typing passwords and raw IP addresses. Set up SSH key authentication, a clean ~/.ssh/config with host aliases and jump hosts, and agent forwarding done safely.

Tutorial · 3w ago0

Designing Payment Infrastructure That Starts With the Threat Model

A technical deep-dive into process isolation, HSM-backed key management, and the architectural choices that shrink your PCI DSS scope before you write a single control.

Article · 3w ago0

Stop Leaking Secrets: A Developer's Practical Guide to Environment Variables and Secrets Management

Bots scan GitHub for API keys within minutes of a push. Here's the minimum-viable strategy every developer needs to keep credentials out of version control, logs, and error messages.

Tutorial · 3w ago0

Trivy: One Scanner to Rule Your Containers, Repos, and Kubernetes Configs

Instead of stitching together five different security tools, Trivy handles CVEs, misconfigs, secrets, and SBOM generation across every target in your pipeline — from a single CLI.

Article · 3w ago0

1,000 Breaches In, and Companies Are Taking Longer Than Ever to Tell You

Troy Hunt's Have I Been Pwned milestone exposes a darkening pattern: breach victims — and the developers who depend on breached services — are flying blind for weeks while data circulates freely on hacking forums.

Article · 3w ago0