Security Journey Blog

Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.

Security Journey Blog Nature

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Read more about 'Security Journey Unveils Developer Manifesto as the Foundation for a Reimagined Platform in the Age of AI'

News and Announcements

Security Journey Unveils Developer Manifesto as the Foundation for a Reimagined Platform in the Age of AI

The manifesto guides a developer-first platform experience with hands-on AI/LLM security training, GitHub-driven risk...

Read More

Read more about '5 Types of Data You Should NEVER Share with AI'

Application Security AI/LLM

5 Types of Data You Should NEVER Share with AI

Large language models (LLMs) like ChatGPT are powerful tools, but it's crucial to remember that data privacy is paramount.

Read More

Topics

Security Development Lifecycle

Secure Coding Training

Apr 27, 2026

Security Development Lifecycle (SDL): Definition & Best Practices

A major difference between a secure application or website and one with exploitable vulnerabilities often comes down to how security is integrated into the development lifecycle and developer...

Security Culture AI/LLM

Apr 25, 2026

Leveraging AI in Fintech Securely

THIS ARTICLE WAS ORIGINALLY WRITTEN BY MICHAEL ERQUITT FOR TECHSTRONG.AI

Secure Coding Training Security Journey News AI/LLM

Apr 23, 2026

What Does the Rise of Vibe Coding Mean for Shift Left?

THIS ARTICLE WAS WRITTEN BY MICHAEL BURCH FOR SDTIMES.COM

For much of software security history, development has followed a well-defined pattern: humans wrote code, tools checked it, humans reviewed...

Security Culture AI/LLM

Apr 23, 2026

The Rise of AI Agents: How OpenClaw Turns Prompts Into Action

Most people still think of AI as a tool to answer questions. You ask a question, get a response, and move on. Maybe it’s useful, or at least it’s mostly right. Either way, the interaction usually...

Security Culture

Apr 22, 2026

Security From Chance to Choice: Navigating Cybersecurity as a Female Leader

THIS ARTICLE ORIGINALLY APPEARED ON SHECANCODE.IO

"If you had asked me in middle school whether I envisioned myself pursuing a career in cybersecurity, my answer would’ve been a definitive no."

...

Code Leaks in 2026: Causes and Prevention In The Age of AI

Cyber Security Threats

Apr 17, 2026

Code Leaks in 2026: Causes and Prevention In The Age of AI

Despite stringent regulations and calls for ‘security by design’, organizations are still failing to equip teams with the knowledge to secure code, according to Security Journey.

Broken Access Control: Definition, Examples, and How to Defend Against It

Cyber Security Threats

Apr 10, 2026

Broken Access Control: Definition, Examples, and How to Defend Against It

Despite stringent regulations and calls for ‘security by design’, organizations are still failing to equip teams with the knowledge to secure code, according to Security Journey.

Top 10 Open Source Software Security Risks and How To Mitigate Them

Cyber Security Threats

Apr 5, 2026

Top 10 Open Source Software Security Risks and How To Mitigate Them

Despite stringent regulations and calls for ‘security by design’, organizations are still failing to equip teams with the knowledge to secure code, according to Security Journey.

What a Cross-Site Scripting (XSS) Vulnerability Is and How To Manage It

Cyber Security Threats

Apr 5, 2026

What a Cross-Site Scripting (XSS) Vulnerability Is and How To Manage It

Despite stringent regulations and calls for ‘security by design’, organizations are still failing to equip teams with the knowledge to secure code, according to Security Journey.

Developer at a laptop with a glowing AI security shield surrounded by checkmarks and warning icons, representing protection against AI-powered cyberattacks

Cyber Security Threats

Mar 30, 2026

The Most Common AI-Powered Cyberattacks in 2026

Despite stringent regulations and calls for ‘security by design’, organizations are still failing to equip teams with the knowledge to secure code, according to Security Journey.

Developer typing on a laptop while multiple red arrows target an AI model icon, illustrating the threat of prompt injection attacks in LLMs

Cyber Security Threats

Mar 30, 2026

Prompt Injection Attacks in LLMs: Examples & Prevention 2026

Despite stringent regulations and calls for ‘security by design’, organizations are still failing to equip teams with the knowledge to secure code, according to Security Journey.

A Guide to Third-Party Dependency Security for Developers

AI/LLM Cyber Security Threats

Mar 23, 2026

A Guide to Third-Party Dependency Security for Developers

Third-party dependencies are now one of the largest sources of risk in modern software development. More than 80% of modern applications rely on third-party code, and while this might look normal,...