Arnica Blog - Plushcap

Blog URL

www.arnica.io/resources/blog

Posts YTD

32 ↑ vs 14 last year

Avg Posts/Month

2.3 since 2024

Monthly Post Volume

Start year: 2022 2023 2024 2025 2026

Post Details

Search:

Title	Author	Published	Words	HN Pts
5 critical lessons from the latest GitHub phishing campaign by Gitloker	Nir Valtman	2024-06-17	1,389	--
[April fools] Introducing SecuriSlow™: Slowing Down Your Developers, Fast	Nir Valtman	2024-04-01	274	--
Malicious Code Campaign on GitHub Repos: Is it Hype or a Dire …	Nir Valtman	2024-03-05	754	2
What Every Developer Needs to Know About GitHub Branch Protection	Nir Valtman	2024-03-13	1,430	1
The Essential Guide to SCA and SAST	Simon Wenet	2024-02-08	505	--
Leveraging EPSS, CVSS, and KEV for Comprehensive Risk Management & Prioritization	Simon Wenet	2024-02-20	1,040	--
Minimize AppSec Effort and Maximize AppSec Coverage with Pipelineless Security Scanning	Nir Valtman	2024-01-23	1,972	--
Practical Guide for Evaluating Secret Detection Solutions to Fit Modern Software Development	Nir Valtman	2024-06-12	2,043	--
Need for AppSec exposed by the ‘ResumeLooters’ SQL Injection & XSS Attacks	Nir Valtman	2024-02-13	555	--
New York Times Data Breach Reveals Secrets & Source Code	Simon Wenet	2024-07-10	832	--
Rabbit r1 Data Breach Again Shows The Dire Need for Improved Secrets …	Simon Wenet	2024-06-28	853	--
Building an AppSec Program, Powered by Pipelineless Security	Nir Valtman	2024-08-20	2,644	--
Time for an Honest Talk About Third-Party Risk Management and Software Composition …	Mark Maney	2024-09-10	903	--
Optimizing Code Security: Advanced Strategies in SAST Scanning	Simon Wenet	2024-09-17	2,199	--
Implementing SAST Security Policies: Effective Strategies for Application Protection	Eitam Arad	2024-10-10	2,083	--
State of Developer Time Loss 2024: How Arnica’s Pipelineless Security Can Help	Eitam Arad	2024-11-05	1,748	--
Best Practices for SCA Scanning in Agile Development	Eitam Arad	2024-11-14	2,326	--
How Arnica's Low-Reputation Package Detection Could Have Prevented the XML-RPC npm Package …	Eran Medan	2024-12-02	869	--
SAST vs. DAST: A Comparative Analysis	Simon Wenet	2025-01-07	1,158	--
Launching Opengrep in response to Semgrep's Open Source Licensing Change	Eran Medan	2025-01-23	563	--
Evaluating SCA Tools for Addressing Open Source Vulnerabilities	Anna Daugherty	2025-02-13	2,520	--
Prioritizing AppSec Vulnerabilities: Developer Context vs. Full Reachability	Nir Valtman	2025-02-11	524	--
Direct vs. Transitive Dependencies: Navigating Package Management in Software Composition Analysis (SCA)	Anna Daugherty	2025-02-25	2,908	--
GitHub Actions Supply Chain Attack: What Arnica Customers Need to Know	Eran Medan	2025-03-17	677	--
How Pipelineless SAST Enforces Application Security Without Slowing Developers Down	Anna Daugherty	2025-04-09	1,501	--
Arnica Now Available on AWS Marketplace	Anna Daugherty	2025-04-23	384	--
SCA Testing for Secure Software Development: When, Where, and How to Scan …	Arnica	2025-05-01	2,074	--
How Regulated Industries Can Evaluate Pipelineless Security Integration Solutions	Arnica	2025-05-14	2,721	--
Understanding the Hidden Costs of DevSecOps Automation Tools	Anna Daugherty	2025-05-10	2,089	--
“Increasing AppSec effectiveness isn’t just a fantasy.” - Key Takeaways from GISEC …	Anna Daugherty	2025-05-09	506	--
Top Application Security Posture Management Tools DevSecOps Teams Rely On	Arnica	2025-07-01	1,782	--
Arnica Recognized by Gartner® in the 2025 Hype Cycle™ for Software Engineering	Anna Daugherty	2025-07-10	86	--
Incremental SCA Scanning Strategies for Large-Scale Monorepos	Arnica	2025-07-15	944	--
Customizing Software Composition Analysis Tools to Enforce Industry-Specific Risk Thresholds	Arnica	2025-07-15	924	--
Using Behavioral Analytics to Improve Real-Time Application Security Monitoring	Arnica	2025-06-26	1,256	--
ASPM Tools That Empower Developers Without Slowing Them Down	Arnica	2025-07-01	1,553	--
Arnica Named a Representative Vendor in 2025 Gartner Hype Cycle for Application …	Anna Daugherty	2025-07-31	471	--
Designing Automated Security Workflows Across Multi-Cloud Codebases	Arnica	2025-06-26	1,066	--
Arnica Positioned as a Major Player in the 2025 IDC MarketScape for …	Anna Daugherty	2025-09-09	429	--
Meet Arnie: Your AI Code Protector	Arnica	2025-09-23	764	--
Secure Coding Agent Architectures for Enterprise Repositories	Arnica	2025-10-03	1,400	--
Building a Zero-Trust Model for Agentic AI Security	Arnica	2025-10-03	1,460	--
From Vibe Coding to Viable Coding: How to Make AI Work in …	Arnica	2025-10-08	500	--
Why Agentic AI Is the Next Leap in Retail Decision-Making	Arnica	2025-10-27	1,044	--
Beneath the Surface of Multi-Agent AppSec	Nir Valtman	2025-11-04	734	--
Securing the Agentic Era: What the Arnica Team Learned at OWASP US …	Arnica	2025-11-10	791	--
Shai Hulud 2.0: How to Immediately Identify Your Exposure with Arnica's New …	Arnica	2025-11-24	379	--
Arnica Named a Leader in the 2025 Frost Radarâ¢ for Application Security …	Arnica	2025-12-10	526	--
Top 6 AI SAST Tools for 2026: The Quick Guide to Agentic …	Arnica	2025-12-15	1,464	--
2026 AppSec Predictions: The Year We Confront AI Reality	Arnica	2025-12-22	882	--
Prevent Vulnerabilities and Exposed Secrets in AI Coding Assistants	Anna Daugherty	2026-01-12	784	--
Top AppSec Tools in 2026 \| Top Application Security Tools Guide	Arnica	2026-02-13	1,427	--
Latio Report Names Arnica Top AppSec Innovator - Feb 2026	Anna Daugherty	2026-02-17	654	--
Zero Day Supply Chain Response: February 2026	Nir Valtman	2026-02-21	842	--
Generate SBOM From Repositories Without Slowing CI - March 2026	Anna Daugherty	2026-03-18	1,111	--
Merge Ready's Arnica Review: March 2026	Arnica	2026-03-19	862	--
How to Check for Impacted LiteLLM Packages in Your SBOM	Eran Medan	2026-03-25	482	--
Bypassing Cursor Agents Guardrails: Script Inspection Flaw	Tal Lavi	2026-03-25	1,491	--
How to Check for Impacted axios Packages in Your SBOM	Eran Medan	2026-03-31	1,122	--
Introducing GrouchGPT: Because Sometimes You Need to Hear the Hard Truth	Arnica	2026-04-01	341	--
How to Check for Impacted pgserve Packages in Your SBOM	Arnica	2026-04-22	491	--
How to Choose Developer-Centric Security Testing for DevSecOps	Arnica	2026-05-11	1,128	--
How to Check for Impacted TanStack Packages in Your SBOM	Arnica	2026-05-11	812	--
AWS Shared Responsibility: A DevSecOps Guide (May 2026)	Arnica	2026-05-11	1,133	--
AWS Zero Trust Architecture for AppSec (May 2026)	Arnica	2026-05-11	1,105	--
SAST Tooling Strategy for Modern DevSecOps Programs	Arnica	2026-05-11	1,016	--
AI Code Scanning Cost Calculator: May 2026	Nir Valtman	2026-05-15	1,206	--
Top SAST Tools for Combining SAST SCA and IaC Scanning in One …	Arnica	2026-05-11	987	--
Arnica in Gartner 2026 Hype Cycle for Platform Engineering	Arnica	2026-05-18	781	--
How to Check for Impacted @antv Packages in Your SBOM	Tal Lavi	2026-05-19	1,020	--
Arnica in Forrester Agentic Development Security Q2 2026	Arnica	2026-05-28	398	--
binding.gyp npm Supply Chain Attack: What Arnica Customers Need to Know (June …	Tal Lavi	2026-06-04	940	--
Dev-First AppSec: Building a Security Program That Developers Actually Want to Use …	Anna Daugherty	2026-06-04	1,777	--
Arnica Recognized by Gartner® in the 2026 Hype Cycle™ for Secure Software …	Arnica	2026-06-05	999	--
Arnica Named a Representative Provider in Gartner® Innovation Insight for Agentic Application …	Arnica	2026-06-09	861	--
Vibe Coding Is Fast But Is It Safe? Security Risks You Can't …	Arnica	2026-06-09	2,334	--
Arnica Recognized by Gartner® in the 2026 Hype Cycle™ for Secure Software …	Arnica	2026-06-05	999	--
Top Alternatives to Wiz Code in 2026	Arnica	2026-06-10	2,117	--
Arnica Wins the 2026 Cybersecurity Stars Award for Best AI Governance and …	Anna Daugherty	2026-06-15	597	--
Post-Legacy SAST: Modern Code Security Tools for June 2026	Anna Daugherty	2026-06-16	1,940	--
Arnica Wins the 2026 Cybersecurity Stars Award for Best AI Governance and …	Anna Daugherty	2026-06-15	597	--
Arnica Recognized in the 2026 Gartner Magic Quadrant for Software Supply Chain …	Anna Daugherty	2026-06-19	799	--

Plushcap, by Matt Makai. 2021-2026.