heise online

Secure Coding: CWE 1123 – Avoid self-modifying code

Self-modifying code changes its own instructions during execution. In practice, this approach certainly offers advantages, for example in terms of adaptability or code optimization. It is not ...
heise online

Secure coding: Prevent unauthorized access through path traversal (CWE-22)

Common Weakness Enumeration CWE-22, commonly referred to as "path traversal", is a vulnerability in which an application does not appropriately restrict the paths that users can access via ...
InfoWorld

Secure coding attracts interest, investment

A new product from computer security firm @stake Inc. will help developers search computer code for errors, security holes and other flaws that malicious hackers can use to break applications — and ...
Computerworld

SANS Program Aims to Boost Secure IT Coding Skills

A coalition of 360 users and vendors led by the SANS Institute last week launched a new information security skills assessment and certification program for corporate and government software ...
InfoWorld

GitHub Copilot makes insecure code even less secure, Snyk says

Developer security firm warns that Copilot and other AI-powered coding assistants may replicate security vulnerabilities already present in the user’s codebase. GitHub’s AI-powered coding assistant, ...