Blog

Appsec isn’t people

Recently there was a thread on Twitter I stuck my nose into about appsec and why it doesn’t work. I…

The security of dependencies

So you’ve written some software. It’s full of open source dependencies. These days all software is full of open source,…

Supplying the supply chain

A long time ago Marc Andreessen said “software is eating the world”. This statement ended up being quite profound in…