"The CERT Oracle Secure Coding Standard for Java" book covers the rules for secure coding using Java programming language. InfoQ spoke with book authors on how these rules can help Java developers.

Nearly half (45%) of AI-generated code contains security flaws despite appearing production-ready, new research from Veracode ...

Secure coding: Prevent unauthorized access through path traversal (CWE-22) CWE-22 describes the improper modification of a path name to a restricted directory. How can the vulnerability be addressed?

A group of secure-programming experts plans a series of documents that outline the skills coders need to write Web applications that are better able to withstand attacks.

New research from software security specialist Fortify reveals that bugs are far less common in Java compared with commercial C/C++ code ...

Secure Code Warrior has launched Missions - allowing developers to experience the impact of insecure code first hand, within a safe environment.

Community driven content discussing all aspects of software development from DevOps to design patterns. There’s really nothing new under the sun when it comes to addressing security vulnerabilities in ...

A new product from computer security firm @stake Inc. will help developers search computer code for errors, security holes and other flaws that malicious hackers can use to break applications ...