Our quest to make world-class security and bugfinding available to all developers, for free

Introducing Bento, a free and opinionated toolkit for easily adopting linters and program analysis in a codebase

Three things your linter shouldn’t tell you

How we’ve curated our code checks in Bento

DEF CON 27 workshop on finding vulnerabilities at scale

Material from our DEF CON workshop on finding vulnerabilities at ecosystem-scale

Surprising subtleties of Docker permissions

Our unique infrastructure leads to unique challenges related to how Docker interacts with filesystem permissions