Closing the Security Gap in AI
This article ORIGINALLY APPEARED on DEVOPSDIGEST.COM
To examine the growing gap between how software is built and how secure it is, Security Journey brought together a panel of seasoned developers,...
Security Journey Blog
Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.
Stay Up-to-Date on all Security Journey news and events.
Featured Articles
Security Journey Unveils Developer Manifesto as the Foundation for a Reimagined Platform in the Age of AI
The manifesto guides a developer-first platform experience with hands-on AI/LLM security training, GitHub-driven risk...
5 Types of Data You Should NEVER Share with AI
Large language models (LLMs) like ChatGPT are powerful tools, but it's crucial to remember that data privacy is paramount.
Read More
Posts by Security Journey/HackEDU Team
CWE Top 25: What the ‘On the Cusp’ Weaknesses Tell Us About Emerging Threats
Most developers are familiar with the CWE Top 25, the annual list of the most dangerous software weaknesses. But fewer know about the lesser-publicized lists that accompany it, which reveal what’s...
What Is a Virtual Machine and How Do You Use Them?
At Security Journey, we strive to create lessons that are compelling, engaging, and informative. Unlike other secure coding training providers that rely on simulations for hands-on lessons, we take a...
OWASP Top 10 Proactive Controls [Complete 2026 Guide]
Instead of chasing threats, it pays to be proactive. OWASP noticed the increase in technology's complexity and interconnectivity and recognized that it would become more difficult to secure our...
How to Choose the Right AI Coding Assistant: Updated 2026
AI coding assistants transform how developers write software by autocompleting functions, suggesting refactors, and even generating tests. But with convenience comes risk. How can engineering teams...
Two Things You Need in Place to Successfully Adopt AI
THIS ARTICLE WAS WRITTEN BY MIKE ERQUITT FOR HELPNETSECURITY.COM.
Organizations should not shy away from taking advantage of AI tools, but they need to find the right balance between maximizing...
How to Evaluate Developer Engagement and Learning in Secure Code Training
Security is a critical aspect of software development, and secure coding practices help mitigate vulnerabilities before they become costly breaches. However, simply implementing a secure code...
10 Professional Developers on the True Promise and Peril of Vibe Coding
THIS ARTICLE WAS WRITTEN BY DAVID GEWIRTZ FOR ZDNET.COM.
Is vibe coding the future of software or a security nightmare in disguise? Here's how experienced developers are responding to the latest...
Developer-Tailored Secure Code Training: A New Approach from Security Journey
Security training for developers has traditionally been a one-size-fits-all experience—generic, compliance-driven, and often irrelevant to a developer’s actual work. At Security Journey, we recognize...
Empower Developers to Preserve Human Agency in Today’s World of Automation
Nearly everything we use is built on code, from cars to smart fridges to doorbells. In businesses, countless applications keep devices, workflows, and operations running.
New Content for Your Most Pressing & Emerging Vulnerabilities: AI/LLM & CWE Top 25
At Security Journey, we continuously evolve our training content to help organizations stay ahead of the most pressing security vulnerabilities. This week, we’re excited to announce the release of ...
Server-Side Request Forgery Attacks: What Devs Need to Know
We'll explore the reasons for PCI-DSS's existence, the consequences of non-compliance, and how adhering to these standards benefits both your business and your customers.