Tag: AppSec
-
The Security Paradox: New Study Reveals 69 Vulnerabilities in AI-Generated Apps
The automation of software development via artificial intelligence has transitioned from the realm of speculative fiction into an inescapable daily reality. The orchestration of applications through code generators is rapidly ascending as a conventional practice. However, alongside this newfound convenience emerges a burgeoning wave of peril, as the structural integrity and security of such solutions…
-
Lightning Strike: Testing Salesforce Security with the Auraditor Extension
Auraditor A Burp Suite extension for security testing Salesforce Lightning and Aura framework applications. Features Request Editor View and edit Aura actions in HTTP requests Add and remove actions using tabs Edit controller names and method names Modify JSON parameters for each action Choose how to handle invalid JSON Copy, cut, and paste in text…
-
SupplyShield: Fortify Your Software Supply Chain
SupplyShield is an open-source application security orchestration framework designed to secure your software supply chain from vulnerabilities, malicious dependencies, and unapproved base images. It provides a comprehensive solution to automate the detection, prioritization, and resolution of security issues in your open-source dependencies and containerized applications. Features Software Composition Analysis (SCA): Identify vulnerabilities in your open-source dependencies…