Security Foundations
This section includes conceptual guides on application security essentials. These fundamental concepts can help strengthen your organization's security posture and can be a helpful reference when educating teams on security principles.
Featured Articles
-
Static Application Security Testing (SAST): Identify vulnerabilities in applications before deployment with tools designed to analyze source code without executing it.
-
Supply Chain Security (SCA): Understand vulnerable dependencies that your source code relies upon.
-
Secure Development Workflows: Plan integration points for security testing into regular development workflows.
Additional Resources
-
Vulnerabilities: Descriptions for different classes of vulnerabilities you may encounter.
-
Application Security Blog: Recent blog posts about application security published by the Semgrep team.
Not finding what you need in this doc? Ask questions in our Community Slack group, or see Support for other ways to get help.