Most GenAI security lists miss the mark. Here’s what developers actually need to build secure software with real tools and context.
By Mark Curphey
Jul 24, 2025
Opengrep, a fork of Semgrep, raises concerns in open-source security. This blog investigates the motivations behind Opengrep, defends Semgrep’s open-core model, and calls for industry accountability.
By Mark Curphey
Jan 29, 2025
Why we shouldn't work together for the greater good of the security industry
By Mark Curphey
Mar 26, 2024
SBOMs are more valuable for platform engineers than they are to security engineers today, and why this will help security in the long run.
By Mark Curphey
Nov 14, 2023