This week's articles
Semgrep: Comparing Pro vs. Community
A research demonstrating that Semgrep Code identifies more findings than Semgrep Community Edition, in the tested open-source projects.
#ci/cd
#defend
Slashing CI Costs at Uber
This blog describes how Uber enhanced SubmitQueue to slash CI resource usage by 53% and speed up wait times by 37%, all while keeping mainlines green.
#build
#ci/cd
Microsoft Entra ID OAuth Phishing and Detections
This article explores OAuth phishing and token-based abuse in Microsoft Entra ID. Through emulation and analysis of tokens, scope, and device behavior during sign-in activity, it surfaces high-fidelity signals defenders can use to detect and hunt for OAuth misuse.
#azure
#elastic
#monitor
|