Keep up with the latest updates from Arnica
Subscribe to our newsletter for updates
Thank you for subscribing to our newsletter!
We'll continue to plant the Arnica seeds with you.
Our apologies, it seems something went wrong with the subscription submission. Please try again.
Sign-up to our RSS feeds
Announcements
Blog
Press
All Posts
Announcements
Blog
Press
Help
External link icon
Feature Announcement: Software bill of materials (SBOM)
February 26, 2023
We launched Arnica today. Here is our story.
December 7, 2022
Feature Announcement: Anomalous Developer Behavior | Arnica
January 26, 2023
Feature Announcement: Secret Detection & Mitigation | Arnica
January 26, 2023
Feature Announcement: Automated Developer Permissions Management | Arnica
January 26, 2023
One-click risk mitigations
October 25, 2022
Post image
Leveraging EPSS, CVSS, and KEV for Comprehensive Risk Management & Prioritization
February 20, 2024
Post image
Need for AppSec exposed by the ‘ResumeLooters’ SQL Injection & XSS Attacks
February 17, 2024
Post image
The Essential Guide to SCA and SAST
February 13, 2024
Post image
How to prioritize third-party package (SCA) vulnerabilities
February 7, 2024
Post image
Why Risk Scanning Needs to be Free: Don't Just Find Risks, Fix Them
January 10, 2024
Post image
How to Evaluate a Static Application Security Testing (SAST) Solution
November 28, 2023
Post image
A Complete Guide: Enterprise Managed Users vs Bring Your Own Users on GitHub
November 20, 2023
Post image
How to Determine the Severity of a Third-Party Risk with Software Composition Analysis (SCA)
November 14, 2023
Post image
SBOM For Your Software Supply Chain: Added Visibility or Security Risk?
January 10, 2024
Post image
How to ensure you don’t have Sourcegraph secrets in source code
September 27, 2023
Post image
How to ensure your third-party software packages are reputable
November 14, 2023
Post image
How to prioritize your backlog of hardcoded secrets
September 4, 2023
Post image
Why Secret Scanning Visibility Should Be Free & Understanding Where There is Value
August 16, 2023
Post image
How to Detect & Prevent Source Code Exfiltration
September 4, 2023
Post image
Should I Manage Code in a Single Organization or Multiple Organizations?
August 25, 2023
Post image
The Criticality of Context for Addressing Software Supply Chain Risk
September 4, 2023
Post image
What Developers Can Learn from Taylor Swift's Re-recording Strategy
July 6, 2023
Post image
Why secrets continue to be a massive problem in source code
July 6, 2023
Post image
Trying to identify spoofing in GitHub? May the 4th be with you!
June 6, 2023
Post image
How insurance tech companies are leading the way on Application Security
May 15, 2023
Post image
How We Converted a GitHub Tool Into a General Purpose Webhook Proxy to Supercharge Our Integration Development
September 22, 2023
Post image
Adopting Pipelineless Security Solutions for Modern AppSec Programs
June 6, 2023
Post image
The Importance of EPSS in Vulnerability Prioritization: A Holistic Approach
June 13, 2023
Post image
Defending Against Source Code Exfiltration, Fast and Slow
April 5, 2023
Post image
What is an SBOM, what is it not, and do you need one?
May 4, 2023
Post image
Harnessing the Power of Secure Coding Practices for Effective CI/CD Security
March 15, 2023
Post image
Best practices maintaining a secure development environment
September 22, 2023
Post image
Azure Permissions: Managing Granular Permissions in Azure Devops
February 21, 2023
Post image
Security to-do lists slow you down, security tools need to fix the problems they find
January 25, 2023
Post image
Leveraging Developer Security Skills to Fortify your Security Team
June 21, 2023
Post image
What is Pipelineless Security?
April 3, 2023
Post image
GitHub Hosted vs. Self-Hosted Runners: Which One Should You Choose?
February 24, 2023
Post image
What to Consider Before Enforcing Multi-Factor Authentication (MFA) on GitHub
June 21, 2023
Post image
Trouble Keeping Track of Your Keys? So Does Toyota: Lessons Learned from a Key Management Breach
February 24, 2023
Post image
Hardening Your Software Development Environment: A Beginner's Guide
February 24, 2023
Post image
Four takeaways from the NSA's software supply chain security recommendations
February 24, 2023
Post image
Analyzing LastPass' Recent Security Incident Notification
February 24, 2023
Post image
Demystifying the Pl0x GitHub attack
February 26, 2023
Post image
GitHub CODEOWNERS: What Every Developer Should Know
September 12, 2023
Post image
Protecting Stale Code Repositories on GitHub: Essential Security Measures
February 24, 2023
Post image
Hacking Upstream: Finding a 0-Day in an OpenSSH Key Parser Library
February 24, 2023
Post image
GitGoat: An Open Source Project of Intentionally (Riskless) Misconfigured GitHub Organizations
February 24, 2023
Post image
Tracing the Impact of a Clothing Retailer's Software Supply Chain Breach on Your Production Environment
February 24, 2023
Post image
The Importance of Free Secret Detection, Even for Private Repositories
April 26, 2023
Post image
Github OAuth Apps Security: How to protect yourself against GitHub/OAuth Apps Supply Chain Attacks
August 25, 2023
Post image
How to Survive a State Actor's Attempt to Put a Backdoor in Your Code
February 24, 2023
Post image
Application Security vs. Software Supply Chain Security: What's the Difference?
August 25, 2023
Post image
How Top Open Source Projects Protect Their Code: Insights and Best Practices
February 24, 2023
Post image
Afraid of your source code leaking? I can tell by the Twitch in your eye…!
February 24, 2023
Post image
Hacking Hacker News: Lessons Learned from a Security Researcher Wearing A Growth Hat
February 24, 2023
Protecting Your Business from Supply Chain Attacks: Expert Q&A
April 7, 2023
Developers Extension Security Team: A New Approach to Ensuring Secure Code
March 1, 2023
How to Reduce Code Risk Using Pipelineless Security
February 27, 2023
Best Secure software development solutions: our top picks
January 9, 2023
Interview with Nir Veltman – Arnica
November 21, 2022
Securing the Modern Software Supply Chain
November 9, 2022
Arnica raises $7M to improve software supply chain security
October 31, 2022
Arnica raises $7 million to secure software supply chain
October 26, 2022
Atlanta startup Arnica raises $7M as it enters growing cybersecurity market
October 26, 2022
How Arnica’s tool keeps supply chain and developers flowing by repelling attacks
October 25, 2022
With $7M in funding, Arnica is using behavioral analytics to spot hackers posing as developers
October 25, 2022
Arnica raises $7M to secure software supply chains with behavior-based threat detection and least-privilege enablement
October 25, 2022
Arnica Raises $7 Million to Protect Software Developers, Code
October 25, 2022
Interview with Nir Valtman, CEO and Founder of Arnica
October 11, 2022
Enhancing the Security of the Software Supply Chain through Secure Software Development Practices
September 14, 2022
Biden issues Executive Order to strengthen nation’s cybersecurity networks
May 13, 2021
Cybersecurity 101: Protect your privacy from hackers, spies, and the government
January 21, 2021