Techly NewsGet the app

Get the latest tech news

We Fixed 2k+ Security Issues (2023)


In this article we explain our journey towards Continuous Security Audits to detect and remediate potential Security Issues within our OpenSource offerings at Dgraph Labs Inc. As part of this initiative, we have integrated a selection of toolsets to facilitate Security Audits to provide 'Improved Visibility' and 'Faster Security Issue Resolution'. Notably, we have successfully addressed over 2k+ security issues, significantly bolstering our SOC2 compliance endeavors.

Our standard release process entails a meticulous sequence, commencing with a Tag Checkpoint on the underlying Code, followed by building our Binary Artifacts and lastly constructing our Docker Images. Additionally, we place significant emphasis on performing static analysis (Linters) on our source code to effectively detect potential security issues encompassing areas such as buffer overflows, memory leaks, and other undefined behaviors. This pipeline plays a crucial role in enabling Continuous Security Audits by executing scans against any code changes made, including pull requests, as well as on our main branch according to a predefined schedule.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of security issues

security issues

Related news:

News photo

Show HN: MCP-Shield – Detect security issues in MCP servers

News photo

Canvassing apps used by UK political parties riddled with privacy, security issues

News photo

Noma is building tools to spot security issues with AI apps

« Firefox Source Code Now Hosted On GitHub
Thailand to Issue $150 Milllion in Government Investment Tokens »