Huge congrats to the team. Well deserved! Nest Rocks 🤘
11.10.2025 18:03 — 👍 1 🔁 0 💬 0 📌 0
🎉 Big news from the OWASP Nest Team! 🎉
We're thrilled to share that OWASP Nest has officially been promoted from the Incubator level to the Lab level!
www.linkedin.com/feed/update/...
11.10.2025 16:57 — 👍 8 🔁 4 💬 3 📌 0
Reddit - The heart of the internet
For those of you that despise Liquid Glass, there's a way to disable it on macOS Tahoe.
defaults write -g com.apple.SwiftUI.DisableSolarium -bool YES
This reddit thread has more info.https://www.reddit.com/r/macapps/comments/1nz6tco/open_source_disable_liquid_glass_with_solidglass/
06.10.2025 18:32 — 👍 2 🔁 0 💬 0 📌 0
The default. I struggle to read the text, which also runs into each other.
With “reduce transparency enabled”. Again, everything is exaggerated. Reduce transparency seems to completely eliminate it, not reduce it.
Liquid Glass looks cool in reviews, but is a hot mess on your own device. The thing I hate: everything’s exaggerated in the same way a five year old exaggerates. I have never used accessibility features and shouldn’t have to in order to fix broken design. Buttons, corners: 🤮. Too much wasted space.
16.09.2025 12:38 — 👍 2 🔁 0 💬 0 📌 0
Transparency Exchange API (TEA) Hackathon - Barcelona 2025 | CycloneDX
Join us in Barcelona to test and shape the Transparency Exchange API, the next evolution in secure supply chain communication.
Join us on Wed May 28, 2025 in Barcelona for a hands-on hackathon to test Beta 1 of the Transparency Exchange API (TEA) — a new way to securely exchange SBOMs, attestations & more.
Free registration, thanks to @owasp.org and Ecma International.
cyclonedx.org/events/hacka...
#CycloneDX #SBOM
21.04.2025 20:39 — 👍 7 🔁 5 💬 0 📌 2
Microsoft Forms
“CVE Data Usage and Satisfaction Survey”
Ends today, April 4, 2025, at 11:59 PM ET!
CVE content consumers, & defenders, this is your opportunity to help enhance the CVE Program & its service offerings
Access the survey here:
forms.office.com/g/hx168RPctg
04.04.2025 12:40 — 👍 1 🔁 1 💬 0 📌 0
LinkedIn
This link will take you to a page that’s not on LinkedIn
Join our community meeting next Wednesday, 2nd April at 4-5PM UTC for a presentation from our friends at #Monzo Bank!
Learn how Monzo replaced a proprietary vulnerability scanner with @cyclonedx.bsky.social #SBOMs & Dependency-Track.
Calendar Invite: dub.sh/dtcalendar
Zoom Link: dub.sh/dtzoom
27.03.2025 19:28 — 👍 4 🔁 4 💬 0 📌 0
Program Overview / CVE Program & FIRST VulnCon 2025
Identifying software is hard!
I'll be on a panel with @stevespringett.bsky.social (OWASP), MegaZone (F5), and Christopher Turner (NIST) at VulnCon to talk about options for software identification in vulnerability management.
9:00 to 9:30 EDT, April 8th.
www.first.org/conference/v...
10.03.2025 19:29 — 👍 9 🔁 3 💬 1 📌 0
Honored to be discussing @cyclonedx.bsky.social and machine-readable attestations with Anchore this month. Join me! This is going to be fun and educational for anyone not familiar with CycloneDX Attestations (CDXA). This is an ideal solution for EO 14144 which requires machine-readable attestations.
15.02.2025 23:04 — 👍 5 🔁 1 💬 0 📌 0
Understood. And I will absolutely keep that in mind.
15.02.2025 00:26 — 👍 1 🔁 0 💬 0 📌 0
@hacks4pancakes.com, you gave one of the best keynotes yesterday at ChiBrrCon that I’ve seen in a very long time. Bravo. Told my wife and a few co-workers about it and the utterly raw impact it had on many in the audience. Any chance of an encore or recording in the future? Best wishes.
15.02.2025 00:15 — 👍 2 🔁 0 💬 1 📌 0
How to pass the OWASP MASVS verification by design?
In Admincontrol, our Android app and IOS app passed the @owasp.org MASVS verification by deciding security requirements and -controls using a game. Here is how...https://dev.to/owasp/how-to-pass-the-owasp-masvs-verification-by-design-2cf9 #appsec
14.02.2025 08:35 — 👍 29 🔁 7 💬 3 📌 0
cdx1 - Unlocking the Next Frontier in xBOM Analysis
If asked to name an incubator that has produced hundreds of projects and tens of highly valuable unicorns, one need only mention the OWASP Foundation. While many in the Western world erroneously assum...
The continued innovation happening in @cyclonedx.bsky.social is truly inspiring. This week, its from the cdxgen team with "cdx1", a family of open-source, SOTA machine learning (ML) models purpose-built for xBOM analysis, validation, and reasoning.
www.linkedin.com/pulse/cdx1-u...
#OWASP #SBOM
10.02.2025 19:31 — 👍 3 🔁 2 💬 1 📌 0
I have been on Twitter since Feb 2009 and today, I have deactivated the account. While I am unable to make public political statements, it's not that hard to figure out. The projects that I lead or co-lead will continue to have a presence on the site, but I will not.
22.01.2025 02:18 — 👍 26 🔁 1 💬 0 📌 0
📌 Excited to share my upcoming book, "Alice and Bob Learn Secure Coding," with you all! Learn from real-world examples, practical advice, and insightful anecdotes. Stay tuned for the release on Feb 5th! shehackspurple.ca/bo...
15.12.2024 16:00 — 👍 18 🔁 5 💬 1 📌 0
At the first ever KoalaCon @owasp.org shared insights into how TEA (Transparency Exchange API) can help automate your product lifecycle. This will be essential to dependency management and vulnerability management in the future. And you can be part of it! #cybersec #appsec #dependency-management
10.12.2024 06:08 — 👍 15 🔁 5 💬 0 📌 0
YouTube video by OWASP CycloneDX
OWASP KoalaCon 2024
KoalaCon 2024 was a huge success. Thank you to all the speakers, including Olle E Johansson, Anthony Harrison, Niklas Düster, Viktor Petersson, and Piotr P. Karwasz. Couldn't attend. No worries, the recording is available on YouTube.
youtu.be/NStzYW4WnEE?...
#OWASP #SBOM #SoftwareTransparency
02.12.2024 23:29 — 👍 10 🔁 7 💬 0 📌 2
Forgot Password - OWASP Cheat Sheet Series
Website with the collection of all the cheat sheets of the project.
Black Friday, a day to be exposed to surprising reset password flows. Password in email, repeatedly the same verification token, etc.
Owasp has a great Forgot Password Cheat Sheet if you ever find yourself implementering a forgot password service: cheatsheetseries.owasp.org/cheatsheets/...
29.11.2024 21:39 — 👍 5 🔁 2 💬 1 📌 0
🎉 Don't miss out on this thrilling opportunity! Get your SUPER Early Bird Tickets for 2025 #OWASP Global #AppSec EU in Barcelona now! Book your spot at a special discounted rate for the May conference. Hurry, these prices are only for a limited time!!! REGISTER TODAY: owasp.glueup.com/eve...
#AI
26.11.2024 19:29 — 👍 13 🔁 6 💬 0 📌 0
Some of the projects I'm involved with have establish bsky account recently. Check out:
OWASP CycloneDX (ECMA-424)
@cyclonedx.bsky.social
OWASP Dependency-Track
@dependencytrack.bsky.social
Ecma Technical Committee 54
@tc54.bsky.social
20.11.2024 21:42 — 👍 3 🔁 1 💬 0 📌 0
Yup that was me. Waited a long time just for the invite as well. Would check in from time to time, but over the last month it’s been really interesting to see the growth. Feeling optimistic.
20.11.2024 00:47 — 👍 1 🔁 0 💬 1 📌 0
👀
20.11.2024 00:41 — 👍 0 🔁 0 💬 0 📌 0
Can't wait to merge the new #SBOM stuff into the EMBA master ... now with dependencies and much more included
06.11.2024 18:39 — 👍 3 🔁 1 💬 0 📌 1
If your company creates software that manage Software Bill of Material data - SBOMs - then you want to take part of the standardisation of an ECMA standard API for exchanging software transparency artefacts. Join us on November 25th! http://teaintro.even... #SPDX #SBOM #INTOTO #CYCLONEDX #OWASP
18.11.2024 17:30 — 👍 5 🔁 2 💬 0 📌 0
Congrats to the winners of this years election.
02.11.2024 15:21 — 👍 0 🔁 0 💬 0 📌 0
Ecma TC54 will be working towards standardizing Package URL, specifically purl, vers, and purl types. TC54 will be working out the details over the next few weeks. We invite everyone to learn more about TC54 and contribute to the advancement of Package URL.
tc54.org
#PackageURL #SBOM #OWASP
22.02.2024 23:36 — 👍 3 🔁 0 💬 0 📌 0
The place for in-depth analysis, political commentary and diverse perspectives to #UnderstandMore.
🔥 Loves to talk about privacy and threat modeling
💡 LINDDUN privacy threat modeling
✨ Privacy engineer
👩💼 Manager Cyber & Privacy
Just trying to make some sense of things, really.
Infosec nerd. Threat modeling aficionado. Opinionated kvetcher.
https://threatmodeling.dev
[bridged from https://infosec.exchange/@izar_tarandach on the fediverse by https://fed.brid.gy/ ]
We make secure design the standard, scalable practice for all digital teams. IriusRisk makes secure design fast, reliable and accessible, even to non-security users, thanks to our automated and AI-augmented Threat Modeling Solution.
A better Bluesky experience starts with drafts and bookmarks 💙
Available on Mac & iPad, coming soon to mobile, Windows & Linux.
Built by @asyncdev.com and @odubu.design
Download the app → dfly.app/download
#buildinpublic
The home of risk takers, late brakers and history makers ✨ unofficial
Up Next: 🏁 Race 19 of 24 🇺🇸
United States Grand Prix | October 17-19
Delivered effective, efficient, and secure digital services for the American people until we were forced to stop on March 1, 2025. Not an official government account. Reposts are not endorsements. Our new website: https://18f.org/ #AltGov
Fan Account | Conta Não-Oficial - Unofficial Account
Scuderia Ferrari F1 Fan Page. All updates, news, live race commentary and more here. Unaffiliated
Charles Leclerc 16 Lewis Hamilton 44
#Tifosi #essereFerrari #ForzaFerrari #F1BSKY #F1 #Ferrari
Home of the 8x Formula 1 World Champions 🖤💚
Unlock work experiences of the future. Join ServiceNow Research as we advance the state-of-the-art in Enterprise AI. https://www.servicenow.com/research/ #ServiceNowResearch #LifeAtNow #Hiring
Software risk with Software Bill of Materials (SBOMs)
Co-leader OWASP Cornucopia. If you like what we do for open source, visit our code repository https://github.com/OWASP/cornucopia and give us a star ⭐
🌈 «Difference is of the essence of humanity» 🦄 – John Hume
#appsec #owasp #cornucopia #threatmodeling
https://github.com/ljharb
software engineer/nerd/teacher/will try anything once; surgeon with git rebase. @TC39 ex @Coinbase/@Airbnb/@Twitter/@MobBase. Fav punctuation ⸮, scent petrichor
Co-founder & CTO of Vulnetix
Bits of Cyber @ Substack
News for Nerds, Stuff that Matters
#tech #news #software #engineering #AI #bitcoin #linux #business
Website: https://slashdot.org
Software Directory: https://slashdot.org/software/
RSS: https://rss.slashdot.org/Slashdot/slashdot
Cloudflare is the world’s leading connectivity cloud, and we have our eyes set on an ambitious goal — to help build a better Internet.
Recovering CISO
May have an orchid problem
Bad photography
Worse dad jokes
The worst Infosec hot takes
Podcast: https://defensivesecurity.org
Blog […]
🌉 bridged from ⁂ https://infosec.exchange/@jerry, follow @ap.brid.gy to interact
