Search

Items tagged with: appsec

Python now ships with 15,000 lines of verified cryptographic code from HACL*, covering all default hash and HMAC algorithms. The integration was seamless and automated, aiming to eliminate bugs like the 2022 SHA3 CVE. A major milestone for verified crypto in mainstream software.

jonathan.protzenko.fr/2025/04/…

#Python #CyberSecurity #Cryptography #AppSec

15,000 lines of verified cryptography now in Python

In November 2022, I opened issue 99108 on Python’s GitHub repository, arguing that after a recent CVE in its implementation of SHA3, Python should embrace verified code for all of its hash-related infrastructure.
Jonathan Protzenko
#cryptography #python #cybersecurity #appsec

🛡️#Curl has been around for 26 years—and it’s still secure! How?

European Open Source Academy member, @bagder Stenberg, joined the latest episode of Security Weekly Productions, discussing how Curl and #libcurl have maintained security and reliability over decades.

A must-listen for #developers and #cybersecurity enthusiasts! 👨‍💻🔒

📺 Explore the episode : youtube.com/watch?v=0UavY_kKKic

👉 Learn more about the Academy : europeanopensource.academy/new…

#CyberSecurity #CurlProject #AppSec

Open Source in Europe Enters a New Era with a Successful First European Open Source Awards Ceremony | European Open Source Academy

A significant milestone for the European open source community was reached on January 30, 2025, when the European Open Source Awards (OSAwards 2025) celebrated the launch of the European Open Source Academy with the Inaugural Ceremony.
europeanopensource.academy
#cybersecurity #developers #curl #libcurl #appsec #curlproject @daniel:// stenberg://

#infosec #appsec #cybersec #owasp #ASVS #MASVS #threatmodeling #isms

#appsec #cybersec #owasp

Some exciting news: Over the past few months I have been working on founding a new organization: Blodeuwedd Labs (@blodeuweddlabs)

We are now in a position to offer subsidized security assessments (and other services) for open source projects.

(In addition to a whole array of analysis, development, and custom research offerings for everyone else)

Announcement (and more info): blodeuweddlabs.com/news/open-s…

#infosec #security #appsec #canada #opensource


Launching our Open Source Review Scheme | Blodeuwedd Labs

To celebrate the founding of Blodeuwedd Labs we are excited to announce Subsidized Assessments for open source projects as part of our commitment to continually give back to the open source Community.
blodeuweddlabs.com
#opensource #infosec #security #canada #appsec @blodeuweddlabs